Browse all 4 CVE security advisories affecting SOCA Technology Co., Ltd. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SOCA Technology Co., Ltd develops enterprise software solutions with a focus on business process automation and data management platforms. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by their four recorded CVEs. The company's security posture has been characterized by inconsistent patch management and insufficient input validation in web interfaces. While no major public security incidents have been documented, the pattern of vulnerabilities suggests potential risks for organizations relying on their software, particularly in environments where unpatched systems remain exposed to common attack vectors.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-25270 | SOCA Access Control System 180612 Reflected Cross-Site Scripting via logged_page.php — SOCA Access Control SystemCWE-79 | 6.1 | Medium | 2026-01-07 |
| CVE-2018-25129 | SOCA Access Control System 180612 Information Disclosure via Multiple Endpoints — SOCA Access Control SystemCWE-639 | 7.5 | High | 2025-12-24 |
| CVE-2018-25128 | SOCA Access Control System 180612 SQL Injection and Authentication Bypass — SOCA Access Control SystemCWE-89 | 8.2 | High | 2025-12-24 |
| CVE-2018-25127 | SOCA Access Control System 180612 Cross-Site Request Forgery via Admin Interface — SOCA Access Control SystemCWE-352 | 5.3 | Medium | 2025-12-24 |
This page lists every published CVE security advisory associated with SOCA Technology Co., Ltd. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.