Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Reputeinfosystems — Vulnerabilities & Security Advisories 36

Browse all 36 CVE security advisories affecting Reputeinfosystems. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Reputeinfosystems operates as a provider of enterprise software solutions, primarily focusing on identity and access management platforms. An analysis of its public vulnerability history reveals a concerning pattern of thirty-six recorded Common Vulnerabilities and Exposures (CVEs). These security flaws predominantly stem from inadequate input validation and improper access controls, resulting in frequent instances of Remote Code Execution (RCE) and Cross-Site Scripting (XSS). Additionally, several entries highlight critical privilege escalation risks, allowing unauthorized users to gain administrative rights within the system. While specific major public breaches are not widely documented in open sources, the high volume of RCE vulnerabilities suggests systemic weaknesses in the software’s security architecture. This track record indicates that Reputeinfosystems products have historically struggled with fundamental secure coding practices, posing significant risks to organizations relying on their identity management infrastructure without rigorous patching and network segmentation.

Top products by Reputeinfosystems: ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress ARForms ARPrice Contact Form, Survey, Quiz & Popup Form Builder – ARForms BookingPress Social Share And Social Locker ARMember ARForms Form Builder
CVE IDTitleCVSSSeverityPublished
CVE-2024-0969 ARMember <= 4.0.24 - Improper Access Control to Sensitive Information Exposure via REST API — ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signupCWE-284 5.3 Medium2024-02-05
CVE-2023-6828 ARForms <= 1.5.8 - Unauthenticated Stored Cross-Site Scripting via arf_http_referrer_url — Contact Form, Survey, Quiz & Popup Form Builder – ARFormsCWE-79 7.2 High2024-01-11
CVE-2023-6219 BookingPress <= 1.0.76 - Authenticated (Administrator+) Arbitrary File Upload — Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPressCWE-434 7.2 High2023-11-28
CVE-2023-3996 ARMember Lite - Membership Plugin <= 4.0.16 - Authenticated (Administrator+) Stored Cross-Site Scripting — ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signupCWE-79 4.4 Medium2023-10-20
CVE-2023-3011 ARMember <= 4.0.5 - Cross-Site Request Forgery — ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signupCWE-352 6.5 Medium2023-07-12
CVE-2022-42888 WordPress ARMember Plugin <= 5.5.1 is vulnerable to Privilege Escalation — ARMemberCWE-269 9.8 Critical2022-12-06

This page lists every published CVE security advisory associated with Reputeinfosystems. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.