Browse all 3 CVE security advisories affecting Foxskav. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Foxskav primarily provides enterprise software solutions with a focus on workflow automation and data management. Historically, vulnerabilities associated with this software include remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and authentication flaws. Security researchers have identified multiple instances of insecure direct object references and server-side request forgery in past versions. While no major public security incidents have been widely documented, the three CVEs on record highlight persistent issues in access control and data handling, suggesting a need for enhanced security testing in development cycles.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-23787 | WordPress Easy Bet Plugin <= 1.0.7 - Reflected Cross Site Scripting (XSS) vulnerability — Easy BetCWE-79 | 7.1 | High | 2025-02-14 |
| CVE-2024-49637 | WordPress Bet WC 2018 Russia plugin <= 2.1 - Reflected Cross Site Scripting (XSS) vulnerability — Bet WC 2018 RussiaCWE-79 | 7.1 | High | 2024-10-29 |
| CVE-2023-31092 | WordPress Easy Bet Plugin <= 1.0.2 is vulnerable to SQL Injection — Easy BetCWE-89 | 5.5 | Medium | 2023-12-20 |
This page lists every published CVE security advisory associated with Foxskav. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.