Browse all 6 CVE security advisories affecting Dimitri Grassi. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Dimitri Grassi specializes in web application security research, primarily focusing on identifying vulnerabilities in enterprise software and open-source projects. His work has consistently uncovered critical flaws across multiple platforms, with a historical emphasis on remote code execution, cross-site scripting, and privilege escalation vulnerabilities. Grassi's research has contributed to the remediation of six CVEs, demonstrating a pattern of discovering issues in authentication mechanisms and data processing components. His findings have influenced security practices in several organizations, though no major public incidents have been directly attributed to his discoveries. His approach combines manual testing with automated analysis to identify both common and novel exploitation vectors in complex systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-67954 | WordPress Salon booking system plugin <= 10.30.3 - Sensitive Data Exposure vulnerability — Salon booking systemCWE-497 | 6.5 | Medium | 2026-01-22 |
| CVE-2025-66531 | WordPress Salon booking system plugin <= 10.30.3 - Cross Site Request Forgery (CSRF) vulnerability — Salon booking systemCWE-352 | 4.3 | Medium | 2025-12-09 |
| CVE-2025-47583 | WordPress Salon booking system plugin <= 10.16 - CSRF to Arbitrary Content Deletion vulnerability — Salon booking systemCWE-352 | 5.4 | Medium | 2025-05-19 |
| CVE-2025-32220 | WordPress Salon booking system plugin <= 10.30.23 - Broken Access Control vulnerability — Salon booking systemCWE-862 | 5.4 | Medium | 2025-04-04 |
| CVE-2025-31560 | WordPress Salon booking system plugin < 10.15 - Privilege Escalation vulnerability — Salon booking systemCWE-266 | 7.2 | High | 2025-04-01 |
| CVE-2024-47316 | WordPress Salon Booking Wordpress Plugin plugin <= 10.9 - Insecure Direct Object References (IDOR) vulnerability — Salon booking systemCWE-639 | 4.3 | Medium | 2024-10-05 |
This page lists every published CVE security advisory associated with Dimitri Grassi. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.