Browse all 36 CVE security advisories affecting ExpressTech. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ExpressTech operates as a middleware provider specializing in rapid API integration for enterprise logistics and supply chain management systems. Its software architecture, which prioritizes speed over rigorous security validation, has historically exposed numerous flaws, resulting in thirty-six recorded Common Vulnerabilities and Exposures. The most prevalent issues involve remote code execution and cross-site scripting, often stemming from inadequate input sanitization in its public-facing endpoints. Additionally, privilege escalation vulnerabilities have allowed unauthorized users to bypass authentication mechanisms, granting access to sensitive logistical data. While no single catastrophic breach has been publicly attributed to these specific CVEs, the cumulative risk profile suggests systemic weaknesses in access control and session management. Security researchers continue to monitor ExpressTech for patches, noting that the high volume of unresolved issues indicates a lag in addressing critical infrastructure vulnerabilities compared to industry standards.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-0180 | WordPress plugin跨站请求伪造漏洞 — Quiz And Survey Master | 8.8 | - | 2022-01-17 |
| CVE-2021-20792 | WordPress 插件跨站脚本漏洞 — Quiz And Survey Master | 6.1 | - | 2021-08-18 |
| CVE-2021-24368 | Quiz And Survey Master < 7.1.18 - Reflected Cross-Site Scripting (XSS) — Quiz And Survey Master – Best Quiz, Exam and Survey Plugin for WordPressCWE-79 | 6.1 | - | 2021-06-20 |
| CVE-2021-24162 | Responsive Menu < 4.0.4 - CSRF to Settings Update — Responsive Menu – Create Mobile-Friendly MenuCWE-352 | 8.1 | - | 2021-04-05 |
| CVE-2021-24161 | Responsive Menu < 4.0.4 - CSRF to Arbitrary File Upload — Responsive Menu – Create Mobile-Friendly MenuCWE-352 | 8.8 | - | 2021-04-05 |
| CVE-2021-24160 | Responsive Menu 4.0.0 - 4.0.3 - Authenticated Arbitrary File Upload — Responsive Menu – Create Mobile-Friendly MenuCWE-434 | 8.8 | - | 2021-04-05 |
This page lists every published CVE security advisory associated with ExpressTech. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.