Browse all 12 CVE security advisories affecting RedNao. AI-powered Chinese analysis, POCs, and references for each vulnerability.
RedNao operates as a web application platform primarily serving e-commerce and content management needs. Historically, the software has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 12 recorded CVEs. Notable security characteristics include insufficient input validation and inadequate access controls in several versions. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests a need for rigorous patch management. The platform's widespread adoption in business-critical environments makes it a persistent target for exploitation, requiring organizations to maintain current security updates and implement compensating controls.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-33593 | WordPress Smart Forms plugin <= 2.6.91 - Broken Access Control vulnerability — Smart FormsCWE-862 | 4.3 | Medium | 2024-04-29 |
| CVE-2019-5924 | WordPress Smart Forms 跨站请求伪造漏洞 — Smart Forms | 8.8 | - | 2019-03-12 |
This page lists every published CVE security advisory associated with RedNao. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.