Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Bylancer — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting Bylancer. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Bylancer is a freelance marketplace platform connecting clients with service providers for web development and digital marketing projects. Historically, the platform has been vulnerable to multiple remote code execution (RCE) and cross-site scripting (XSS) flaws, often stemming from improper input validation and insecure file upload mechanisms. Privilege escalation vulnerabilities have also been documented, allowing unauthorized access to administrative functions. While no major public security incidents have been reported, the seven CVEs on record indicate consistent security challenges, particularly in user input handling and access control, requiring ongoing remediation efforts to maintain platform integrity.

Top products by Bylancer: QuickAI OpenAI QuickJob QuickVCard QuickOrder QuickQR Quicklancer Bookme – Free Online Appointment Booking and Scheduling Plugin
CVE IDTitleCVSSSeverityPublished
CVE-2025-13385 Bookme <= 4.2 - Authenticated (Admin+) SQL Injection via 'filter[status]' Parameter — Bookme – Free Online Appointment Booking and Scheduling PluginCWE-89 4.9 Medium2025-11-25
CVE-2024-7188 Bylancer Quicklancer GET Parameter listing sql injection — QuicklancerCWE-89 7.3 High2024-07-29
CVE-2023-3690 Bylancer QuickOrder GET Parameter blog sql injection — QuickOrderCWE-89 6.3 Medium2023-07-16
CVE-2023-3689 Bylancer QuickQR GET Parameter blog sql injection — QuickQRCWE-89 6.3 Medium2023-07-16
CVE-2023-3688 Bylancer QuickJob GET Parameter sql injection — QuickJobCWE-89 6.3 Medium2023-07-16
CVE-2023-3687 Bylancer QuickVCard GET Parameter blog sql injection — QuickVCardCWE-89 6.3 Medium2023-07-16
CVE-2023-3686 Bylancer QuickAI OpenAI GET Parameter blog sql injection — QuickAI OpenAICWE-89 6.3 Medium2023-07-16

This page lists every published CVE security advisory associated with Bylancer. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.