Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tomas — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting Tomas. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tomas primarily develops web applications and APIs for enterprise clients, with a core focus on custom business process automation. Historically, Tomas has been associated with vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from input validation failures and misconfigured access controls. Security assessments have revealed Tomas's code frequently contains insufficient authentication mechanisms and insecure direct object references. While no major public security incidents have been documented, Tomas's CVE history indicates a pattern of security oversights in session management and data sanitization, requiring consistent remediation efforts to maintain secure deployment standards.

Found 2 results / 3Clear Filters
Top products by Tomas: WordPress Tooltips BuddyPress Members Only
CVE IDTitleCVSSSeverityPublished
CVE-2025-63005 WordPress WordPress Tooltips plugin <= 10.9.3 - Cross Site Scripting (XSS) vulnerability — WordPress TooltipsCWE-79 6.5 Medium2025-12-31
CVE-2024-30243 WordPress Tooltips plugin < 9.4.5 - Auth. SQL Injection vulnerability — WordPress TooltipsCWE-89 8.5 High2024-03-28

This page lists every published CVE security advisory associated with Tomas. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.