Browse all 3 CVE security advisories affecting Suncreate. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Suncreate develops digital content creation and management software primarily used in media and design industries. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure authentication mechanisms. While no major public security incidents have been widely documented, the three CVEs recorded reveal consistent patterns of inadequate security controls in web interfaces and file processing components. Their software typically handles user-generated content, making injection flaws particularly concerning. Security researchers have noted that patch adoption has been inconsistent, leaving some deployments exposed to known exploits for extended periods.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-3626 | Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System UpLoadFloodPlanFile UpLoadFloodPlanFile.ashx unrestricted upload — Mountain Flood Disaster Prevention Monitoring and Early Warning SystemCWE-434 | 6.3 | Medium | 2023-07-11 |
| CVE-2023-3625 | Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System Duty Write-UploadFile UploadFile.ashx unrestricted upload — Mountain Flood Disaster Prevention Monitoring and Early Warning SystemCWE-434 | 6.3 | Medium | 2023-07-11 |
| CVE-2023-3623 | Suncreate Mountain Flood Disaster Prevention Monitoring and Early Warning System Duty Module UploadHandler.ashx unrestricted upload — Mountain Flood Disaster Prevention Monitoring and Early Warning SystemCWE-434 | 6.3 | Medium | 2023-07-11 |
This page lists every published CVE security advisory associated with Suncreate. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.