Browse all 8 CVE security advisories affecting PlexTrac. AI-powered Chinese analysis, POCs, and references for each vulnerability.
PlexTrac is a vulnerability management platform designed to streamline security workflows through collaboration and reporting. Historically, its vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control issues. While no major public incidents have been widely documented, the platform's 8 recorded CVEs highlight potential risks in areas like API endpoints and administrative functions. Security researchers have identified issues where insufficient safeguards could allow unauthorized access or system compromise, emphasizing the need for regular patching and secure coding practices in vulnerability management tools.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-12687 | Insecure YAML Deserialization — PlexTracCWE-502 | 9.8 | - | 2024-12-16 |
| CVE-2024-11839 | Insecure Deserialization via Runbooks Imports — PlexTracCWE-502 | 9.8 | - | 2024-12-13 |
| CVE-2024-11838 | Local File Inclusion — PlexTracCWE-73 | 9.8 | - | 2024-12-13 |
| CVE-2024-11837 | N1QL Injection — PlexTracCWE-89 | 9.8 | - | 2024-12-13 |
| CVE-2024-11836 | Server-side Request Forgery — PlexTracCWE-918 | 7.5 | - | 2024-12-13 |
| CVE-2024-11835 | Denial of Service — PlexTracCWE-400 | 7.5 | - | 2024-12-13 |
| CVE-2024-11834 | Arbitrary File Write via PTRAC Import — PlexTracCWE-22 | 7.5 | - | 2024-12-13 |
| CVE-2024-11833 | Arbitrary Directory Write via Runbooks Artifact Upload — PlexTracCWE-22 | 7.5 | - | 2024-12-13 |
This page lists every published CVE security advisory associated with PlexTrac. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.