Browse all 4 CVE security advisories affecting Granth. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Granth is a web application framework primarily used for building content management systems and enterprise portals. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure default configurations. The framework's modular architecture introduces additional attack surfaces through third-party plugins. While no major public security incidents have been widely documented, its CVE history reveals consistent patterns of authentication bypass flaws and insecure object references. Development teams implementing Granth should prioritize hardening configurations and applying security patches promptly, as the framework remains a target for opportunistic attackers seeking to exploit known weaknesses in legacy deployments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-2500 | Go Pricing - WordPress Responsive Pricing Tables <= 3.3.19 - Authenticated (Subscriber+) PHP Object Injection — Go Pricing - WordPress Responsive Pricing TablesCWE-502 | 8.8 | High | 2023-05-24 |
| CVE-2023-2494 | Go Pricing - WordPress Responsive Pricing Tables <= 3.3.19 - Missing Authorization to Limited Privilege Granting — Go Pricing - WordPress Responsive Pricing TablesCWE-862 | 4.6 | Medium | 2023-05-23 |
| CVE-2023-2496 | Go Pricing - WordPress Responsive Pricing Tables <= 3.3.19 - Improper Authorization to Arbitrary File Upload — Go Pricing - WordPress Responsive Pricing TablesCWE-285 | 7.1 | High | 2023-05-23 |
| CVE-2023-2498 | Go Pricing - WordPress Responsive Pricing Tables <= 3.3.19 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Go Pricing - WordPress Responsive Pricing TablesCWE-79 | 6.4 | Medium | 2023-05-23 |
This page lists every published CVE security advisory associated with Granth. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.