Browse all 3 CVE security advisories affecting Mahlamusa. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mahlamusa is a network monitoring tool primarily used for real-time traffic analysis and security event detection. Historically, it has been associated with vulnerabilities including remote code execution, cross-site scripting, and privilege escalation flaws. The software has faced multiple security incidents, with three CVEs documented to date, highlighting potential weaknesses in input validation and access control. These vulnerabilities could allow attackers to execute arbitrary code, bypass security measures, or gain elevated privileges on affected systems. Mahlamusa's security posture has been a concern for organizations relying on its monitoring capabilities, necessitating regular updates and hardening to mitigate identified risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-47558 | WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to SQL Injection — Who Hit The Page – Hit CounterCWE-89 | 7.6 | High | 2023-12-18 |
| CVE-2023-46087 | WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to Cross Site Request Forgery (CSRF) — Who Hit The Page – Hit CounterCWE-352 | 4.3 | Medium | 2023-10-16 |
| CVE-2023-25466 | WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to Cross Site Scripting (XSS) — Who Hit The Page – Hit CounterCWE-79 | 5.8 | Medium | 2023-08-30 |
This page lists every published CVE security advisory associated with Mahlamusa. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.