Browse all 9 CVE security advisories affecting Smackcoders Inc.,. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Smackcoders Inc. develops web and mobile applications for various industries, with a history of security vulnerabilities reflected in their 9 CVEs. Common issues include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and access control weaknesses. The company has faced criticism for inconsistent security practices, with vulnerabilities frequently discovered in their e-commerce and content management systems. While no major public breaches have been attributed to Smackcoders, their CVE history suggests a pattern of security gaps that could expose client systems to compromise. Security researchers note that while some vulnerabilities are patched promptly, others remain unaddressed for extended periods, indicating potential systemic issues in their development lifecycle.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-47690 | WordPress Lead Form Data Collection to CRM plugin <= 3.1 - Arbitrary Option Update to Privilege Escalation vulnerability — Lead Form Data Collection to CRMCWE-862 | 8.8 | High | 2025-05-23 |
| CVE-2025-30810 | WordPress Lead Form Data Collection to CRM plugin <= 3.0.1 - SQL Injection vulnerability — Lead Form Data Collection to CRMCWE-89 | 8.5 | High | 2025-03-27 |
This page lists every published CVE security advisory associated with Smackcoders Inc.,. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.