Browse all 4 CVE security advisories affecting BichitroGan. AI-powered Chinese analysis, POCs, and references for each vulnerability.
BichitroGan is a web application primarily used for content management and online community platforms. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and authentication flaws. The application has accumulated four CVEs, with notable security concerns including insecure direct object references and insufficient session management. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests a need for rigorous security testing and input sanitization practices in its deployment.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-6624 | BichitroGan ISP Billing Software Pool List add cross site scripting — ISP Billing SoftwareCWE-79 | 2.4 | Low | 2026-04-20 |
| CVE-2026-6623 | BichitroGan ISP Billing Software Profile users-view cross site scripting — ISP Billing SoftwareCWE-79 | 2.4 | Low | 2026-04-20 |
| CVE-2026-6622 | BichitroGan ISP Billing Software Customer edit cross site scripting — ISP Billing SoftwareCWE-79 | 2.4 | Low | 2026-04-20 |
| CVE-2026-5031 | BichitroGan ISP Billing Software Endpoint users-view resource injection — ISP Billing SoftwareCWE-99 | 4.3 | Medium | 2026-03-29 |
This page lists every published CVE security advisory associated with BichitroGan. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.