Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Venutius — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting Venutius. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Venutius primarily serves as a middleware component facilitating data integration between enterprise systems. Historically, the software has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. While no major public security incidents have been widely documented, its three recorded CVEs highlight consistent weaknesses in authentication mechanisms and secure coding practices. The application's complex architecture and extensive API surface contribute to its attack potential, requiring organizations to implement strict network segmentation and regular security assessments to mitigate risks associated with its deployment.

Top products by Venutius: BP Profile Shortcodes Extra
CVE IDTitleCVSSSeverityPublished
CVE-2025-22817 WordPress BP Profile Shortcodes Extra plugin <= 2.6.0 - Cross Site Scripting (XSS) vulnerability — BP Profile Shortcodes ExtraCWE-79 6.5 Medium2025-01-09
CVE-2024-11732 BP Profile Shortcodes Extra <= 2.6.0 - Authenticated (Contributor+) SQL Injection via tab Parameter — BP Profile Shortcodes ExtraCWE-89 6.5 Medium2024-12-03
CVE-2023-47815 WordPress BP Profile Shortcodes Extra Plugin <= 2.5.2 is vulnerable to Cross Site Scripting (XSS) — BP Profile Shortcodes ExtraCWE-79 6.5 Medium2023-11-22

This page lists every published CVE security advisory associated with Venutius. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.