Browse all 3 CVE security advisories affecting PINPOINT.WORLD. AI-powered Chinese analysis, POCs, and references for each vulnerability.
PINPOINT.WORLD operates as a cybersecurity platform specializing in vulnerability intelligence and attack surface management, helping organizations identify and mitigate security risks. Historically, the platform has been associated with vulnerabilities including remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from misconfigurations and input validation issues. While no major public security incidents have been documented, the three CVEs on record highlight potential weaknesses in API security and access controls. The platform's core value lies in continuous threat detection, though its own security posture suggests that even specialized tools require rigorous hardening to prevent exploitation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-38520 | WordPress Pinpoint Booking System plugin <= 2.9.9.3.4 - Parameter Tampering — Pinpoint Booking SystemCWE-472 | 6.5 | Medium | 2024-06-04 |
| CVE-2023-45270 | WordPress Pinpoint Booking System Plugin <= 2.9.9.4.0 is vulnerable to Cross Site Request Forgery (CSRF) — Pinpoint Booking SystemCWE-352 | 4.3 | Medium | 2023-10-13 |
| CVE-2023-25062 | WordPress Pinpoint Booking System Plugin <= 2.9.9.2.8 is vulnerable to Cross Site Scripting (XSS) — Pinpoint Booking SystemCWE-79 | 5.9 | Medium | 2023-04-06 |
This page lists every published CVE security advisory associated with PINPOINT.WORLD. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.