Browse all 3 CVE security advisories affecting Blaz K.. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Blaz K. specializes in web application security research, identifying vulnerabilities in enterprise software and open-source projects. Historically, their findings center on remote code execution, cross-site scripting, and privilege escalation flaws, with three CVEs currently attributed to their work. Their research often targets authentication mechanisms and data processing functions, revealing critical weaknesses in widely used platforms. While no major public incidents are directly linked to their discoveries, their contributions have prompted security patches in multiple high-impact systems. Blaz K.'s work demonstrates a consistent focus on uncovering exploitable flaws that could lead to complete system compromise or unauthorized data access.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-49765 | WordPress Rate my Post – WP Rating System Plugin <= 3.4.1 is vulnerable to Insecure Direct Object References (IDOR) — Rate my Post – WP Rating SystemCWE-639 | 4.3 | Medium | 2023-12-21 |
| CVE-2022-40310 | WordPress Rate my Post – WP Rating System plugin <= 3.3.4 - Race Condition vulnerability — Rate my Post – WP Rating System (WordPress plugin) | 4.3 | Medium | 2022-09-23 |
| CVE-2022-40671 | WordPress Rate my Post – WP Rating System plugin <= 3.3.4 - Cross-Site Request Forgery (CSRF) vulnerability — Rate my Post – WP Rating System (WordPress plugin)CWE-352 | 4.3 | Medium | 2022-09-23 |
This page lists every published CVE security advisory associated with Blaz K.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.