Browse all 3 CVE security advisories affecting Oct8ne. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Oct8ne is a customer engagement platform enabling interactive product visualization and support on e-commerce websites. Historically, it has been vulnerable to multiple security issues including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation vulnerabilities. These flaws typically stem from improper input validation and insufficient access controls in its web components. The platform has accumulated three CVEs to date, with RCE being the most critical class of vulnerability reported. Security researchers have noted that unpatched instances could allow attackers to execute arbitrary code or compromise user sessions, particularly in multi-tenant environments where proper isolation controls may be lacking.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-9141 | Cross-Site Scripting (XSS) vulnerability in Oct8ne — Oct8neCWE-79 | 5.4 | Medium | 2024-09-24 |
This page lists every published CVE security advisory associated with Oct8ne. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.