Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Cozy Vision — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting Cozy Vision. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cozy Vision provides cloud-based document management solutions for enterprise collaboration. Historically, the product has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its six recorded CVEs. Notable security characteristics include insufficient input validation and inadequate access controls in its web interface. While no major public incidents have been widely documented, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on the platform for sensitive document handling. Regular security assessments and prompt patching are recommended due to the recurring nature of these issues.

Top products by Cozy Vision: SMS Alert Order Notifications
CVE IDTitleCVSSSeverityPublished
CVE-2026-32373 WordPress SMS Alert Order Notifications plugin <= 3.9.0 - Broken Access Control vulnerability — SMS Alert Order NotificationsCWE-862 5.4 Medium2026-03-13
CVE-2025-66086 WordPress SMS Alert Order Notifications plugin <= 3.8.8 - Broken Access Control vulnerability — SMS Alert Order NotificationsCWE-862 5.3 Medium2025-11-21
CVE-2025-49915 WordPress SMS Alert Order Notifications plugin <= 3.8.5 - SQL Injection vulnerability — SMS Alert Order NotificationsCWE-89 9.3 Critical2025-10-22
CVE-2025-47682 WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.8.1 - SQL Injection Vulnerability — SMS Alert Order NotificationsCWE-89 9.3 Critical2025-05-12
CVE-2025-26984 WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.7.8 - Reflected Cross Site Scripting (XSS) vulnerability — SMS Alert Order NotificationsCWE-79 7.1 High2025-03-03
CVE-2025-26988 WordPress SMS Alert Order Notifications – WooCommerce plugin <= 3.7.8 - SQL Injection vulnerability — SMS Alert Order NotificationsCWE-89 9.3 Critical2025-03-03

This page lists every published CVE security advisory associated with Cozy Vision. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.