Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

InspireUI — Vulnerabilities & Security Advisories 24

Browse all 24 CVE security advisories affecting InspireUI. AI-powered Chinese analysis, POCs, and references for each vulnerability.

InspireUI is a frontend component library primarily utilized for building user interfaces in web applications, often integrated with popular JavaScript frameworks. Security audits have identified twenty-four Common Vulnerabilities and Exposures (CVEs) associated with this software, indicating a significant historical attack surface. The majority of these vulnerabilities stem from improper input validation and sanitization, leading to prevalent classes of defects such as Cross-Site Scripting (XSS) and, in some instances, Remote Code Execution (RCE). Additionally, several issues relate to broken access control mechanisms, allowing potential privilege escalation for authenticated users. These flaws suggest that the library has historically struggled with secure coding practices regarding user-supplied data handling. While specific major incidents involving widespread exploitation remain unverified in public threat intelligence feeds, the high volume of disclosed CVEs necessitates rigorous dependency scanning and immediate patching for any organization relying on this component to maintain application integrity and prevent unauthorized access or data compromise.

Top products by InspireUI: MStore API – Create Native Android & iOS Apps On The Cloud MStore API
CVE IDTitleCVSSSeverityPublished
CVE-2026-3568 MStore API <= 4.18.3 - Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary User Meta Update — MStore API – Create Native Android & iOS Apps On The CloudCWE-639 4.3 Medium2026-04-09
CVE-2025-4683 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.17.5 - Missing Authorization to Authenticated (Subscriber+) Posts Creation — MStore API – Create Native Android & iOS Apps On The CloudCWE-862 4.3 Medium2025-05-27
CVE-2025-3438 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.17.4 - Unauthenticated Limited Privilege Escalation — MStore API – Create Native Android & iOS Apps On The CloudCWE-269 6.5 Medium2025-05-02
CVE-2024-12042 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.16.4 - Authenticated (Subscriber+) HTML File Upload (Stored Cross-Site Scripting) — MStore API – Create Native Android & iOS Apps On The CloudCWE-434 5.4 Medium2024-12-13
CVE-2024-11179 MStore API <= 4.15.7 - Authenticated (Subscriber+) SQL Injection — MStore API – Create Native Android & iOS Apps On The CloudCWE-89 6.5 Medium2024-11-20
CVE-2024-8242 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.15.3 - Authenticated (Subscriber+) Limited Arbitrary File Upload — MStore API – Create Native Android & iOS Apps On The CloudCWE-434 4.3 Medium2024-09-13
CVE-2024-8269 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.15.3 - Unauthorized User Registration — MStore API – Create Native Android & iOS Apps On The CloudCWE-284 7.3 High2024-09-13
CVE-2024-7628 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.15.2 - Authentication Bypass to Account Takeover — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 8.1 High2024-08-15
CVE-2024-6328 MStore API – Create Native Android & iOS Apps On The Cloud <= 4.14.7 - Authentication Bypass — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 9.8 Critical2024-07-12
CVE-2023-50878 WordPress MStore API Plugin <= 4.10.1 is vulnerable to Cross Site Request Forgery (CSRF) — MStore APICWE-352 5.4 Medium2023-12-29
CVE-2023-45055 WordPress MStore API Plugin <= 4.0.6 is vulnerable to SQL Injection — MStore APICWE-89 8.5 High2023-11-06
CVE-2023-3277 MStore API <= 4.10.7 - Unauthorized Account Access and Privilege Escalation — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 9.8 Critical2023-11-03
CVE-2023-3202 MStore API <= 3.9.6 - Cross-Site Request Forgery to Firebase Server Key Update — MStore API – Create Native Android & iOS Apps On The CloudCWE-352 4.3 Medium2023-07-12
CVE-2023-3199 MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Title Update — MStore API – Create Native Android & iOS Apps On The CloudCWE-352 4.3 Medium2023-07-12
CVE-2023-3197 MStore API <= 4.0.1 - Unauthenticated SQL Injection — MStore API – Create Native Android & iOS Apps On The CloudCWE-89 9.8 Critical2023-06-24
CVE-2022-47614 WordPress MStore API Plugin <= 3.9.7 is vulnerable to SQL Injection — MStore APICWE-89 7.5 High2023-06-23
CVE-2023-3198 MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Status Update — MStore API – Create Native Android & iOS Apps On The CloudCWE-352 4.3 Medium2023-06-14
CVE-2023-3201 MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Title Update — MStore API – Create Native Android & iOS Apps On The CloudCWE-352 4.3 Medium2023-06-14
CVE-2023-3200 MStore API <= 3.9.6 - Cross-Site Request Forgery to Order Message Update — MStore API – Create Native Android & iOS Apps On The CloudCWE-352 4.3 Medium2023-06-14
CVE-2023-3203 MStore API <= 3.9.6 - Cross-Site Request Forgery to Product Limit Update — MStore API – Create Native Android & iOS Apps On The CloudCWE-352 4.3 Medium2023-06-14
CVE-2020-36713 MStore API <= 2.1.5 - Authentication Bypass — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 9.8 Critical2023-06-07
CVE-2023-2732 MStore API <= 3.9.2 - Authentication Bypass — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 9.8 Critical2023-05-25
CVE-2023-2733 MStore API <= 3.9.0 - Authentication Bypass — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 9.8 Critical2023-05-25
CVE-2023-2734 MStore API <= 3.9.1 - Authentication Bypass — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 9.8 Critical2023-05-25

This page lists every published CVE security advisory associated with InspireUI. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.