Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Max Foundry — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting Max Foundry. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Max Foundry develops industrial control systems (ICS) and SCADA software for critical infrastructure. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure default configurations. The company has addressed multiple CVEs, including several critical RCE flaws in communication protocols. While no major public security incidents have been widely documented, their consistent vulnerability pattern suggests a need for stronger security-by-design principles. Max Foundry's position in critical infrastructure makes their security posture particularly significant, as exploitation could potentially impact operational technology environments.

Top products by Max Foundry: Media Library Folders MaxButtons MaxGalleria (WordPress plugin) MaxButtons (WordPress plugin) WordPress Button Plugin MaxButtons (WordPress plugin) Media Library Folders (WordPress plugin) WordPress Button Plugin MaxButtons
CVE IDTitleCVSSSeverityPublished
CVE-2024-31287 WordPress Media Library Folders plugin <= 8.1.8 - Directory Traversal vulnerability — Media Library FoldersCWE-22 6.5 Medium2024-04-10
CVE-2024-30486 WordPress Media Library Folders plugin <= 8.1.7 - Auth. SQL Injection vulnerability — Media Library FoldersCWE-89 8.5 High2024-03-29
CVE-2023-36503 WordPress MaxButtons Plugin <= 9.5.3 is vulnerable to Cross Site Scripting (XSS) — WordPress Button Plugin MaxButtonsCWE-79 6.5 Medium2023-07-25
CVE-2022-41634 WordPress Media Library Folders plugin <= 7.1.1 - Cross-Site Request Forgery (CSRF) vulnerability — Media Library Folders (WordPress plugin)CWE-352 5.4 Medium2022-11-18
CVE-2022-38703 WordPress Button Plugin MaxButtons plugin <= 9.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability — WordPress Button Plugin MaxButtons (WordPress plugin)CWE-79 3.4 Low2022-09-23
CVE-2022-36346 WordPress MaxButtons plugin <= 9.2 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities — MaxButtons (WordPress plugin)CWE-352 4.3 Medium2022-08-22
CVE-2022-25603 WordPress MaxGalleria plugin <= 6.2.5 - Stored Cross-Site Scripting (XSS) vulnerability — MaxGalleria (WordPress plugin)CWE-79 4.8 Medium2022-03-18
CVE-2017-2169 WordPress MaxButtons和MaxButtons Pro 跨站脚本漏洞 — MaxButtons 6.1 -2017-05-22

This page lists every published CVE security advisory associated with Max Foundry. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.