Browse all 3 CVE security advisories affecting Saho. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Saho is a web application primarily used for content management and customer relationship management. Historically, it has been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and authentication flaws. The application has demonstrated security weaknesses in its file handling and session management components. While no major public security incidents have been widely documented, the three CVEs associated with Saho highlight consistent issues with access controls and data sanitization. Its architecture has shown susceptibility to both client-side and server-side injection attacks, requiring regular patching and secure configuration to mitigate risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-38030 | Saho ADM100&ADM-100FP - Execute Code — ADM100CWE-306 | 7.5 | High | 2023-08-28 |
| CVE-2023-38029 | Saho ADM100&ADM-100FP - Arbitrary File Upload — ADM100CWE-434 | 9.8 | Critical | 2023-08-28 |
| CVE-2023-38028 | Saho ADM100&ADM-100FP - Broken Access Control — ADM100CWE-306 | 9.1 | Critical | 2023-08-28 |
This page lists every published CVE security advisory associated with Saho. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.