Browse all 5 CVE security advisories affecting FascinatedBox. AI-powered Chinese analysis, POCs, and references for each vulnerability.
FascinatedBox develops enterprise collaboration software with a core focus on secure document sharing and team communication. Historically, the product has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its five CVE records. Notable security characteristics include insufficient input validation and inadequate access controls in earlier versions. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests ongoing challenges in secure coding practices. Recent versions have shown improved security postures, though legacy deployments may remain at risk.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-3392 | FascinatedBox lily lily_emitter.c eval_tree null pointer dereference — lilyCWE-476 | 3.3 | Low | 2026-03-01 |
| CVE-2026-3391 | FascinatedBox lily lily_emitter.c clear_storages out-of-bounds — lilyCWE-125 | 3.3 | Low | 2026-03-01 |
| CVE-2026-3390 | FascinatedBox lily Error Reporting lily_build_error.c patch_line_end out-of-bounds — lilyCWE-125 | 3.3 | Low | 2026-03-01 |
| CVE-2026-2662 | FascinatedBox lily lily_emitter.c count_transforms out-of-bounds — lilyCWE-125 | 3.3 | Low | 2026-02-18 |
| CVE-2026-2660 | FascinatedBox lily lily_symtab.c shorthash_for_name use after free — lilyCWE-416 | 3.3 | Low | 2026-02-18 |
This page lists every published CVE security advisory associated with FascinatedBox. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.