Browse all 4 CVE security advisories affecting Shabti Kaplan. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Shabti Kaplan specializes in web application security, focusing on identifying vulnerabilities in enterprise software. Their work primarily centers on uncovering remote code execution, cross-site scripting, and privilege escalation flaws, with 4 CVEs attributed to their research. Kaplan has demonstrated expertise in detecting authentication bypasses and insecure direct object references in widely-used platforms. While no major public security incidents are directly linked to their findings, their contributions have addressed critical weaknesses in commercial and open-source systems. Their research consistently highlights the prevalence of input validation failures and misconfigurations in high-impact applications, providing actionable insights for improving security postures across multiple industries.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49267 | WordPress Frontend Admin by DynamiApps plugin <= 3.28.3 - SQL Injection vulnerability — Frontend Admin by DynamiAppsCWE-89 | 8.5 | High | 2025-08-14 |
| CVE-2025-49303 | WordPress Frontend Admin by DynamiApps plugin <= 3.28.7 - Arbitrary File Download Vulnerability — Frontend Admin by DynamiAppsCWE-22 | 6.8 | Medium | 2025-07-04 |
| CVE-2025-26987 | WordPress Frontend Admin by DynamiApps plugin <= 3.25.17 - Reflected Cross Site Scripting (XSS) vulnerability — Frontend Admin by DynamiAppsCWE-79 | 7.1 | High | 2025-02-25 |
| CVE-2023-51411 | WordPress Frontend Admin by DynamiApps Plugin <= 3.18.3 is vulnerable to Arbitrary File Upload — Frontend Admin by DynamiAppsCWE-434 | 10.0 | Critical | 2023-12-29 |
This page lists every published CVE security advisory associated with Shabti Kaplan. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.