Browse all 10 CVE security advisories affecting SevenSpark. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Sevenspark develops web applications and content management systems, primarily serving digital agencies and businesses requiring custom online solutions. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting (XSS), and privilege escalation flaws, with 10 CVEs documented to date. Notable security characteristics include inconsistent input validation and insufficient access controls in several components. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities across different products suggests systemic security challenges in their development practices, particularly regarding secure coding standards and timely patch management.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-36746 | Menu Swapper <= 1.1.0.2 - Cross-Site Request Forgery Bypass — Menu SwapperCWE-352 | 4.3 | Medium | 2023-07-01 |
This page lists every published CVE security advisory associated with SevenSpark. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.