Browse all 3 CVE security advisories affecting GhozyLab, Inc.. AI-powered Chinese analysis, POCs, and references for each vulnerability.
GhozyLab, Inc. develops software tools for web application development and testing, with their products commonly used for security assessment purposes. Historically, their vulnerabilities have frequently involved remote code execution (RCE) and cross-site scripting (XSS) due to input validation flaws in their web interfaces. The company has shown patterns of privilege escalation vulnerabilities in administrative components. While no major public security incidents have been widely documented, their three recorded CVEs highlight consistent issues with insufficient sanitization of user-supplied data and improper access controls in their development tools.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-34567 | WordPress Easy Notify Lite plugin <= 1.1.29 - Cross Site Scripting (XSS) vulnerability — Popup BuilderCWE-79 | 6.5 | Medium | 2024-05-17 |
| CVE-2024-30445 | WordPress Web Icons plugin <= 1.0.0.10 - Cross Site Scripting (XSS) vulnerability — Web IconsCWE-79 | 6.5 | Medium | 2024-03-29 |
| CVE-2024-29933 | WordPress Web Icons plugin <= 1.0.0.10 - Cross Site Scripting (XSS) vulnerability — Web IconsCWE-79 | 6.5 | Medium | 2024-03-27 |
This page lists every published CVE security advisory associated with GhozyLab, Inc.. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.