Browse all 5 CVE security advisories affecting Javier Carazo. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Javier Carazo focuses on web application security research, identifying vulnerabilities in commercial and open-source software. His work primarily centers on remote code execution and cross-site scripting flaws, with privilege escalation vulnerabilities also appearing frequently in his findings. Carazo has contributed to the disclosure of five CVEs, demonstrating consistent attention to critical security flaws in widely used systems. His research typically emphasizes input validation and authentication bypass issues, highlighting common weaknesses in web frameworks. While no major public incidents are directly attributed to his work, his contributions to vulnerability databases provide valuable insights for defensive security teams and software developers seeking to strengthen their applications against exploitation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-24689 | WordPress Import and export users and customers plugin 1.27.12 - Sensitive Data Exposure vulnerability — Import and export users and customersCWE-538 | 5.9 | Medium | 2025-01-27 |
| CVE-2024-50413 | WordPress Import and export users and customers plugin <= 1.27.5 - Cross Site Scripting (XSS) vulnerability — Import and export users and customersCWE-79 | 5.9 | Medium | 2024-10-29 |
| CVE-2024-38787 | WordPress Import and export users and customers plugin <= 1.26.8 - Sensitive Information via Imported File vulnerability — Import and export users and customersCWE-201 | 7.5 | High | 2024-08-13 |
| CVE-2024-34815 | WordPress Import and export users and customers plugin <= 1.26.5 - Broken Access Control vulnerability — Import and export users and customersCWE-862 | 5.4 | Medium | 2024-06-11 |
| CVE-2024-32817 | WordPress Import and export users and customers plugin <= 1.26.2 - PHP Object Injection vulnerability — Import and export users and customersCWE-502 | 4.4 | Medium | 2024-04-24 |
This page lists every published CVE security advisory associated with Javier Carazo. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.