Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Creativeitem — Vulnerabilities & Security Advisories 12

Browse all 12 CVE security advisories affecting Creativeitem. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Creativeitem develops e-commerce and content management platforms with a focus on customizable digital solutions. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure default configurations. The company has addressed multiple critical flaws in its core components, with 12 CVEs documented to date. Notable security characteristics include inconsistent patch release cycles and occasional delays in addressing reported vulnerabilities. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests a need for enhanced security development practices across their product lines.

Top products by Creativeitem: Ekushey CRM Atlas Business Directory Listing Academy LMS Doctor Appointment Booking Ekushey Project Manager CRM Mastery LMS Sociopro
CVE IDTitleCVSSSeverityPublished
CVE-2023-53876 Academy LMS 6.1 Arbitrary File Upload Vulnerability via Profile Settings — Academy LMSCWE-434 5.4AIMediumAI2025-12-15
CVE-2025-40992 Stored XSS in Creativeitem Sociopro — SocioproCWE-79 5.4AIMediumAI2025-10-02
CVE-2025-40991 Stored XSS in Creativeitem Ekushey CRM — Ekushey CRMCWE-79 6.1 -2025-10-02
CVE-2025-40990 Stored XSS in Creativeitem Ekushey CRM — Ekushey CRMCWE-79 6.1 -2025-10-02
CVE-2025-40989 Stored XSS in Creativeitem Ekushey CRM — Ekushey CRMCWE-79 6.1 -2025-10-02
CVE-2025-27264 WordPress Doctor Appointment Booking Plugin <= 1.0.0 - Local File Inclusion vulnerability — Doctor Appointment BookingCWE-98 7.5 High2025-03-03
CVE-2025-27263 WordPress Doctor Appointment Booking Plugin <= 1.0.0 - SQL Injection vulnerability — Doctor Appointment BookingCWE-89 8.5 High2025-03-03
CVE-2023-3756 Creativeitem Atlas Business Directory Listing search cross site scripting — Atlas Business Directory ListingCWE-79 3.5 Low2023-07-19
CVE-2023-3755 Creativeitem Atlas Business Directory Listing filter_listings cross site scripting — Atlas Business Directory ListingCWE-79 3.5 Low2023-07-19
CVE-2023-3754 Creativeitem Ekushey Project Manager CRM xxxxxxxx[random-msg-hash] cross site scripting — Ekushey Project Manager CRMCWE-79 3.5 Low2023-07-19
CVE-2023-3753 Creativeitem Mastery LMS browse cross site scripting — Mastery LMSCWE-79 3.5 Low2023-07-19
CVE-2023-3752 Creativeitem Academy LMS courses cross site scripting — Academy LMSCWE-79 3.5 Low2023-07-19

This page lists every published CVE security advisory associated with Creativeitem. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.