Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Praskla-Technology — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting Praskla-Technology. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Praskla-Technology develops enterprise software solutions for supply chain management, with its products handling critical data processing and workflow automation. Historically, their applications have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been documented, the 10 CVEs on record indicate consistent security challenges, particularly in authentication mechanisms and API endpoints. Their security posture appears reactive rather than preventive, with patch cycles typically addressing vulnerabilities after disclosure rather than implementing proactive security measures.

Top products by Praskla-Technology: assessment-placipy
CVE IDTitleCVSSSeverityPublished
CVE-2026-25875 PlaciPy Admin Privilege Escalation via Trusted JWT Claims — assessment-placipyCWE-863 6.5AIMediumAI2026-02-09
CVE-2026-25814 NoSQL Injection Risk via Unsanitized Query Parameters — assessment-placipyCWE-74 7.1AIHighAI2026-02-09
CVE-2026-25813 PlaciPy Exposes Sensitive Data via Application Logs — assessment-placipyCWE-532 7.5AIHighAI2026-02-09
CVE-2026-25812 PlaciPy is Missing CSRF Protection on State-Changing Endpoints — assessment-placipyCWE-352 6.5AIMediumAI2026-02-09
CVE-2026-25811 PlaciPy Email Domain Trust Enables Cross-Tenant Data Access (Multi-Tenant Isolation Failure) — assessment-placipyCWE-863 4.3AIMediumAI2026-02-09
CVE-2026-25809 PlaciPy Code Execution Allowed Without Assessment Active State Validation — assessment-placipyCWE-285 9.8AICriticalAI2026-02-09
CVE-2026-25806 PlaciPy has Missing Authorization Checks on Student Management Endpoints (IDOR) — assessment-placipyCWE-862 9.1AICriticalAI2026-02-09
CVE-2026-25810 PlaciPy is Missing Object-Level Authorization in student.submission.routes.ts — assessment-placipyCWE-862 9.1AICriticalAI2026-02-09
CVE-2026-25876 PlaciPy is Missing Authorization on Assessment Results Endpoint — assessment-placipyCWE-862 7.5AIHighAI2026-02-09
CVE-2026-25753 PlaciPy has a Hard-Coded Default Password for All Student Accounts (Account Takeover) — assessment-placipyCWE-259 9.8AICriticalAI2026-02-06

This page lists every published CVE security advisory associated with Praskla-Technology. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.