Browse all 4 CVE security advisories affecting Nks. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Nks is primarily a web application framework used for building dynamic web applications and APIs. Historically, Nks has been associated with several common vulnerability classes, including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. These issues often stem from improper input validation and insecure default configurations. While no major public security incidents have been widely documented, the four CVEs assigned to Nks highlight ongoing security concerns that developers should address through timely patching and secure coding practices. The framework's widespread adoption makes it a potential target for exploitation if not properly secured.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49912 | WordPress Email Subscription Popup plugin <= 1.2.26 - Cross Site Scripting (XSS) vulnerability — Email Subscription PopupCWE-79 | 5.9 | Medium | 2025-10-22 |
| CVE-2025-30816 | WordPress publish post email notification plugin <= 1.0.2.3 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability — publish post email notificationCWE-352 | 4.3 | Medium | 2025-03-27 |
| CVE-2025-24587 | WordPress Email Subscription Popup plugin <= 1.2.23 - SQL Injection vulnerability — Email Subscription PopupCWE-89 | 7.6 | High | 2025-01-24 |
| CVE-2024-51785 | WordPress Responsive Filterable Portfolio plugin <= 1.0.22 - Server Side Request Forgery (SSRF) vulnerability — Responsive Filterable PortfolioCWE-918 | 4.4 | Medium | 2024-11-09 |
This page lists every published CVE security advisory associated with Nks. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.