Browse all 3 CVE security advisories affecting Mohammad I. Okfie. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mohammad I. Okfie focuses on web application security research, identifying vulnerabilities in commercial software. Their work primarily centers on remote code execution and cross-site scripting flaws, with a secondary focus on privilege escalation weaknesses. The researcher maintains three CVE records, demonstrating consistent contributions to vulnerability disclosure. Their findings typically involve input validation bypasses and insecure deserialization issues in widely deployed systems. While no major public incidents are directly attributed to Okfie, their CVE contributions highlight persistent security challenges in web application architectures, particularly in how applications handle untrusted input and manage session privileges.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-68897 | WordPress IF AS Shortcode plugin <= 1.2 - Remote Code Execution (RCE) vulnerability — IF AS ShortcodeCWE-94 | 9.9 | Critical | 2025-12-29 |
| CVE-2025-32560 | WordPress WP-Hijri Plugin <= 1.5.3 - Reflected Cross Site Scripting (XSS) vulnerability — WP-HijriCWE-79 | 7.1 | High | 2025-04-17 |
| CVE-2023-33320 | WordPress WP-Hijri Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS) — WP-HijriCWE-79 | 7.1 | High | 2023-08-30 |
This page lists every published CVE security advisory associated with Mohammad I. Okfie. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.