Browse all 3 CVE security advisories affecting Valiano. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Valiano develops enterprise software for supply chain management and logistics operations. Historically, vulnerabilities in their products have commonly included remote code execution, cross-site scripting, and privilege escalation flaws. Security researchers have identified authentication bypass issues and insecure direct object references in their web applications. While no major public security incidents have been widely reported, the three CVEs on record highlight persistent concerns around input validation and access control. Their software typically handles sensitive business data but has not faced significant public breach disclosures, suggesting moderate security postures with room for improvement in secure coding practices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-43207 | WordPress Unite Gallery Lite plugin <= 1.7.62 - SQL Injection vulnerability — Unite Gallery LiteCWE-89 | 8.5 | High | 2024-08-18 |
| CVE-2023-33310 | WordPress Unite Gallery Lite plugin <= 1.7.59 - Local File Inclusion vulnerability — Unite Gallery LiteCWE-22 | 6.0 | Medium | 2024-05-17 |
| CVE-2023-34183 | WordPress Unite Gallery Lite Plugin <= 1.7.61 is vulnerable to Cross Site Scripting (XSS) — Unite Gallery LiteCWE-79 | 5.9 | Medium | 2023-08-30 |
This page lists every published CVE security advisory associated with Valiano. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.