Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Hgiga — Vulnerabilities & Security Advisories 41

Browse all 41 CVE security advisories affecting Hgiga. AI-powered Chinese analysis, POCs, and references for each vulnerability.

HGiga operates as a digital content aggregation and streaming platform, primarily facilitating access to media files through decentralized networks. Security audits have identified forty-one distinct Common Vulnerabilities and Exposures (CVEs) associated with its infrastructure, indicating a persistent pattern of technical debt. The most prevalent vulnerability classes involve remote code execution (RCE) and cross-site scripting (XSS), often stemming from inadequate input validation in web interfaces. Additionally, instances of broken access control and privilege escalation have been documented, allowing unauthorized users to manipulate system resources or access restricted data. These flaws frequently arise from legacy codebases and insufficient security testing during rapid deployment cycles. While no single catastrophic data breach has been widely publicized, the cumulative risk of these vulnerabilities poses significant threats to user privacy and system integrity, highlighting the urgent need for comprehensive architectural remediation and rigorous patch management protocols within the organization.

Top products by Hgiga: iSherlock 4.5 MailSherlock MSR45/SSR45 OAKlouds MailSherlock PowerStation C&Cmail OAKlouds OAKSv2 C&Cm@il package olln-base OAKSv20 OAKlouds-document_v3 OAKSv20 OAKlouds-document_v3 2.0 OAKSv20 OAKlouds-mol_course_v3 2.0 C&Cm@il iSherlock-maillog-4.5 C&Cm@il package olln-base iSherlock-base-4.5
CVE IDTitleCVSSSeverityPublished
CVE-2026-6349 HGiga|iSherlock - OS Command Injection — iSherlock-base-4.5CWE-78 9.8 Critical2026-04-16
CVE-2026-2236 HGiga|C&Cm@il - SQL Injection — C&Cm@il package olln-baseCWE-89 7.5 High2026-02-09
CVE-2026-2235 HGiga|C&Cm@il - SQL Injection — C&Cm@il package olln-baseCWE-89 6.5 Medium2026-02-09
CVE-2026-2234 HGiga|C&Cm@il - Missing Authentication — C&Cm@il package olln-baseCWE-306 9.1 Critical2026-02-09
CVE-2025-11900 HGiga|iSherlock - OS Command Injection — iSherlock 4.5CWE-78 9.8 Critical2025-10-17
CVE-2025-7451 Hgiga|iSherlock - OS Command Injection — iSherlock-maillog-4.5CWE-78 9.8 Critical2025-07-14
CVE-2025-3364 HGiga PowerStation - Chroot Escape — PowerStationCWE-250 6.7 Medium2025-04-08
CVE-2025-3363 HGiga iSherlock - OS Command Injection — iSherlock 4.5CWE-78 9.8 Critical2025-04-08
CVE-2025-3362 HGiga iSherlock - OS Command Injection — iSherlock 4.5CWE-78 9.8 Critical2025-04-08
CVE-2025-3361 HGiga iSherlock - OS Command Injection — iSherlock 4.5CWE-78 9.8 Critical2025-04-08
CVE-2025-2150 HGiga C&Cm@il - Stored Cross-Site Scripting — C&Cm@ilCWE-79 5.4 Medium2025-03-10
CVE-2024-9924 Hgiga OAKlouds - Arbitrary File Read And Delete — OAKloudsCWE-36 9.8 Critical2024-10-14
CVE-2024-4299 HGiga iSherlock - Command Injection — iSherlock 4.5CWE-78 7.2 High2024-04-29
CVE-2024-4298 HGiga iSherlock - Command Injection — iSherlock 4.5CWE-78 7.2 High2024-04-29
CVE-2024-4297 HGiga iSherlock - Arbitrary File Download — iSherlock 4.5CWE-22 4.9 Medium2024-04-29
CVE-2024-4296 HGiga iSherlock - Arbitrary File Download — iSherlock 4.5CWE-22 4.9 Medium2024-04-29
CVE-2024-26261 Hgiga OAKlouds - Arbitrary File Read And Delete — OAKloudsCWE-22 9.8 Critical2024-02-15
CVE-2024-26260 Hgiga OAKlouds - Command Injection — OAKloudsCWE-78 9.8 Critical2024-02-15
CVE-2023-37292 HGiga iSherlock - Command Injection — iSherlock 4.5CWE-78 9.8 Critical2023-07-21
CVE-2023-24841 HGiga MailSherlock - Command Injection — MailSherlockCWE-78 7.2 High2023-03-27
CVE-2023-24842 HGiga MailSherlock - Broken Access Control — MailSherlockCWE-639 5.3 Medium2023-03-27
CVE-2023-24840 HGiga MailSherlock - SQL Injection — MailSherlockCWE-89 7.2 High2023-03-27
CVE-2023-24839 HGiga MailSherlock - Reflected XSS — MailSherlockCWE-79 6.1 Medium2023-03-27
CVE-2023-24838 HGiga PowerStation - Information Leakage — PowerStationCWE-200 9.8 Critical2023-03-27
CVE-2023-24837 HGiga PowerStation - Command Injection — PowerStationCWE-78 8.8 High2023-03-27
CVE-2022-38118 HGiga OAKlouds - SQL Injection — OAKloudsCWE-89 8.8 High2022-08-30
CVE-2021-37913 HGiga OAKlouds - Command Injection-2 — OAKlouds OAKSv2CWE-78 9.8 Critical2021-09-15
CVE-2021-37912 HGiga OAKlouds - Command Injection-1 — OAKlouds OAKSv2CWE-78 9.8 Critical2021-09-15
CVE-2021-22848 HGiga MailSherlock - SQL Injection-2 — MailSherlock MSR45/SSR45CWE-89 7.0 High2021-03-18
CVE-2021-22852 HGiga OAKloud Portal - SQL injection -2 — OAKSv20 OAKlouds-mol_course_v3 2.0CWE-89 8.8 High2021-01-19

This page lists every published CVE security advisory associated with Hgiga. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.