Browse all 4 CVE security advisories affecting NSquared. AI-powered Chinese analysis, POCs, and references for each vulnerability.
NSquared develops enterprise collaboration software focused on document management and workflow automation. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been widely reported, the four CVEs on record highlight recurring issues in authentication mechanisms and insecure deserialization. Their security posture appears typical for mid-sized software vendors, with vulnerabilities primarily centered on web application interfaces and API endpoints, though no systemic compromise patterns have been documented.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-39694 | WordPress Simply Schedule Appointments plugin <= 1.6.10.2 - Broken Access Control vulnerability — Simply Schedule AppointmentsCWE-862 | 5.3 | Medium | 2026-04-08 |
| CVE-2026-39495 | WordPress Simply Schedule Appointments plugin <= 1.6.9.27 - SQL Injection vulnerability — Simply Schedule AppointmentsCWE-89 | 8.5 | High | 2026-04-08 |
| CVE-2025-69315 | WordPress Simply Schedule Appointments plugin <= 1.6.9.15 - Broken Access Control vulnerability — Simply Schedule AppointmentsCWE-862 | 6.5 | Medium | 2026-01-22 |
This page lists every published CVE security advisory associated with NSquared. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.