Browse all 21 CVE security advisories affecting NotFound. AI-powered Chinese analysis, POCs, and references for each vulnerability.
NotFound operates as a specialized software development firm, primarily delivering enterprise-grade web application frameworks and content management solutions. Its core business centers on providing scalable infrastructure for digital platforms, though this complexity has historically exposed it to significant security scrutiny. Analysis of its twenty-one recorded Common Vulnerabilities and Exposures (CVEs) reveals a pattern of critical flaws, predominantly involving remote code execution and cross-site scripting. These vulnerabilities often stem from insufficient input validation and improper access controls within its framework components. While no single catastrophic data breach has been publicly attributed to these specific CVEs, the recurring nature of privilege escalation issues suggests systemic weaknesses in authentication mechanisms. The company has addressed many of these defects through routine patch cycles, yet the high volume of historical findings indicates that rigorous security auditing remains an ongoing challenge for its development lifecycle.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-26776 | WordPress Chaty Pro Plugin <= 3.3.3 - Arbitrary File Upload vulnerability — Chaty ProCWE-434 | 10.0 | Critical | 2025-02-22 |
This page lists every published CVE security advisory associated with NotFound. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.