Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Byzoro — Vulnerabilities & Security Advisories 35

Browse all 35 CVE security advisories affecting Byzoro. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Byzoro operates as a specialized platform providing automated security testing solutions for web applications and APIs, primarily targeting development teams seeking to integrate vulnerability scanning into their continuous integration pipelines. Historical analysis of its attack surface reveals a pattern of critical flaws, including Remote Code Execution (RCE) and Cross-Site Scripting (XSS), which have frequently allowed attackers to bypass authentication mechanisms or execute arbitrary commands on affected servers. Privilege escalation vulnerabilities have also been documented, enabling low-privileged users to gain administrative control over the testing infrastructure. While specific major public incidents remain limited in detailed reporting, the accumulation of thirty-five Common Vulnerabilities and Exposures (CVEs) indicates persistent challenges in securing the application’s underlying architecture. These recurring issues highlight significant gaps in input validation and access control implementations within the software’s core functionality.

Top products by Byzoro: Smart S85F Management Platform Smart S45F Multi-Service Secure Gateway Intelligent Management Platform S210 Smart S150 Management Platform Smart S80 Smart S80 Management Platform Smart S20 PatrolFlow 2530Pro Smart S210 Management Platform Smart S40 Management Platform Smart S20 Management Platform Smart S42 Management Platform Smart S200 Management Platform
CVE IDTitleCVSSSeverityPublished
CVE-2023-4546 Byzoro Smart S85F Management Platform licence.php access control — Smart S85F Management PlatformCWE-284 3.5 Low2023-08-26
CVE-2023-4544 Byzoro Smart S85F Management Platform php.ini direct request — Smart S85F Management PlatformCWE-425 4.3 Medium2023-08-26
CVE-2023-4414 Byzoro Smart S85F Management Platform decodmail.php command injection — Smart S85F Management PlatformCWE-77 6.3 Medium2023-08-18
CVE-2023-4121 Byzoro Smart S85F Management Platform unrestricted upload — Smart S85F Management PlatformCWE-434 6.3 Medium2023-08-03
CVE-2023-4120 Byzoro Smart S85F Management Platform importhtml.php command injection — Smart S85F Management PlatformCWE-77 6.3 Medium2023-08-03

This page lists every published CVE security advisory associated with Byzoro. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.