Browse all 3 CVE security advisories affecting Pixelpost.org. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Pixelpost.org serves as an open-source photo publishing platform designed for photographers to create and manage image blogs. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, with three CVEs currently documented. The platform's security posture has been compromised through insufficient input validation and improper access controls, though no major public incidents have been widely reported. Its lightweight architecture and focus on simplicity may contribute to ongoing security challenges, requiring regular updates and careful configuration to mitigate risks associated with its PHP-based implementation and third-party plugin ecosystem.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-0604 | Pixelpost 安全漏洞 — Pixelpost | 9.8 | - | 2018-06-26 |
| CVE-2018-0605 | Pixelpost 跨站脚本漏洞 — Pixelpost | 6.1 | - | 2018-06-26 |
| CVE-2018-0606 | Pixelpost SQL注入漏洞 — Pixelpost | 7.2 | - | 2018-06-26 |
This page lists every published CVE security advisory associated with Pixelpost.org. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.