Browse all 10 CVE security advisories affecting SHIRASAGI Project. AI-powered Chinese analysis, POCs, and references for each vulnerability.
The SHIRASAGI Project is a Japanese open-source content management system designed for building websites and digital archives. Historically, it has been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with 10 CVEs recorded to date. The platform's modular architecture has introduced potential risks through insecure file uploads, insufficient input validation, and weak access controls. While no major public security incidents have been widely documented, the consistent discovery of vulnerabilities across different versions highlights ongoing challenges in secure development practices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-46898 | SHIRASAGI 安全漏洞 — SHIRASAGICWE-22 | 7.5 | - | 2024-10-15 |
| CVE-2023-36492 | SHIRASAGI 跨站脚本漏洞 — SHIRASAGI | 6.1 | - | 2023-09-05 |
| CVE-2023-39448 | SHIRASAGI 路径遍历漏洞 — SHIRASAGI | 8.8 | - | 2023-09-05 |
| CVE-2023-22425 | SHIRASAGI 跨站脚本漏洞 — SHIRASAGI | 5.4 | - | 2023-02-24 |
| CVE-2023-22427 | SHIRASAGI 跨站脚本漏洞 — SHIRASAGI | 4.8 | - | 2023-02-24 |
| CVE-2022-43479 | SHIRASAGI 输入验证错误漏洞 — SHIRASAGI | 6.1 | - | 2022-12-05 |
| CVE-2022-43499 | SHIRASAGI 跨站脚本漏洞 — SHIRASAGI | 4.8 | - | 2022-12-05 |
| CVE-2022-29485 | SHIRAGI 跨站脚本漏洞 — SHIRASAGI | 6.1 | - | 2022-06-14 |
| CVE-2020-5607 | SHIRASAGI 输入验证错误漏洞 — SHIRASAGI | 8.2 | - | 2020-07-10 |
| CVE-2019-6009 | SHIRASAGI 输入验证错误漏洞 — SHIRASAGI | 8.2 | - | 2019-09-12 |
This page lists every published CVE security advisory associated with SHIRASAGI Project. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.