Browse all 3 CVE security advisories affecting IT Path Solutions. AI-powered Chinese analysis, POCs, and references for each vulnerability.
IT Path Solutions provides IT infrastructure and network management solutions for enterprise environments. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with three CVEs currently documented. The company's security posture has shown weaknesses in input validation and access control mechanisms. While no major public security incidents have been reported, the consistent pattern of vulnerabilities in their software suggests a need for enhanced security development practices. Their solutions, while serving core IT management functions, have demonstrated recurring security flaws that could potentially lead to unauthorized system access or data breaches if properly exploited.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-31808 | WordPress SCSS WP Editor plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerability — SCSS WP EditorCWE-352 | 4.3 | Medium | 2025-04-01 |
| CVE-2023-47871 | WordPress Contact Form to Any API plugin <= 1.1.6 - Broken Access Control vulnerability — Contact Form to Any APICWE-862 | 4.3 | Medium | 2024-12-09 |
| CVE-2024-30242 | WordPress Contact Form to Any API plugin <= 1.1.8 - Auth. SQL Injection vulnerability — Contact Form to Any APICWE-89 | 8.5 | High | 2024-03-28 |
This page lists every published CVE security advisory associated with IT Path Solutions. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.