Browse all 3 CVE security advisories affecting Katie. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Katie primarily serves as a web application framework used for building dynamic content management systems. Historically, Katie has been associated with vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with three CVEs currently documented. The framework's modular architecture has introduced security challenges through third-party extensions. Notable characteristics include its templating system which has previously contributed to XSS vulnerabilities, and its authentication mechanisms that have been susceptible to bypass. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities in core components suggests ongoing security concerns for implementations relying on Katie's functionality.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-47621 | WordPress Zotpress plugin <= 7.3.10 - Cross Site Scripting (XSS) vulnerability — ZotpressCWE-79 | 6.5 | Medium | 2024-10-05 |
| CVE-2024-34569 | WordPress Zotpress plugin <= 7.3.9 - Cross Site Scripting (XSS) vulnerability — ZotpressCWE-79 | 6.5 | Medium | 2024-05-08 |
| CVE-2024-30488 | WordPress Zotpress plugin <= 7.3.7 - SQL Injection vulnerability — ZotpressCWE-89 | 8.5 | High | 2024-03-29 |
This page lists every published CVE security advisory associated with Katie. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.