Browse all 4 CVE security advisories affecting Pixelite. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Pixelite develops digital imaging and graphic design software used in creative industries. Historically, its products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure memory handling. The company has addressed multiple critical flaws, including four CVEs, with some allowing arbitrary code execution through crafted image files. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities in image processing components suggests ongoing challenges in securing complex file parsing operations against malformed inputs and memory corruption issues.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-30515 | WordPress Events Manager plugin <= 6.4.6.4 - Broken Access Control vulnerability — Events ManagerCWE-862 | 4.3 | Medium | 2024-06-09 |
| CVE-2024-30546 | WordPress Login With Ajax plugin <= 4.1 - Cross Site Request Forgery (CSRF) vulnerability — Login With AjaxCWE-352 | 4.3 | Medium | 2024-04-15 |
| CVE-2024-30421 | WordPress Events Manager plugin <= 6.4.7.1 - Cross Site Request Forgery (CSRF) vulnerability — Events ManagerCWE-352 | 4.3 | Medium | 2024-03-28 |
| CVE-2023-48326 | WordPress Events Manager Plugin <= 6.4.5 is vulnerable to Cross Site Scripting (XSS) — Events ManagerCWE-79 | 7.1 | High | 2023-11-30 |
This page lists every published CVE security advisory associated with Pixelite. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.