Browse all 3 CVE security advisories affecting Dinesh Karki. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Dinesh Karki focuses on web application security research, identifying vulnerabilities in commercial software and open-source projects. His work primarily centers on remote code execution, cross-site scripting, and privilege escalation flaws, with three CVEs recorded in these areas. Karki's research often targets content management systems and e-commerce platforms, where he has discovered critical authentication bypass vulnerabilities. His contributions have led to security patches in widely used software, though no major public incidents are directly attributed to his findings. Karki's approach emphasizes practical exploitation techniques, providing detailed proof-of-concept code to aid developers in understanding and mitigating the identified weaknesses.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-43947 | WordPress WP Armour Extended plugin <= 1.26 - Cross Site Request Forgery (CSRF) vulnerability — WP Armour ExtendedCWE-352 | 5.4 | Medium | 2024-08-29 |
| CVE-2024-43948 | WordPress WP Armour Extended plugin <= 1.26 - Reflected Cross Site Scripting (XSS) vulnerability — WP Armour ExtendedCWE-79 | 7.1 | High | 2024-08-29 |
| CVE-2023-44261 | WordPress Block Plugin Update Plugin <= 3.3 is vulnerable to Cross Site Request Forgery (CSRF) — Block Plugin UpdateCWE-352 | 4.3 | Medium | 2023-10-10 |
This page lists every published CVE security advisory associated with Dinesh Karki. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.