Browse all 4 CVE security advisories affecting Vollstart. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Vollstart provides a cloud-based platform for managing startup operations and investor relations, handling sensitive financial and business data. Historically, the platform has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its four recorded CVEs. These vulnerabilities often stem from insufficient input validation and improper access controls in web interfaces. While no major public security incidents have been documented, the consistent pattern of critical vulnerabilities in a platform handling confidential business information suggests ongoing security challenges that require robust mitigation strategies and regular security assessments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62091 | WordPress Serial Codes Generator and Validator with WooCommerce Support plugin <= 2.8.2 - Broken Access Control vulnerability — Serial Codes Generator and Validator with WooCommerce SupportCWE-862 | 5.4 | Medium | 2025-12-31 |
| CVE-2025-30854 | WordPress Serial Codes Generator and Validator with WooCommerce Support plugin <= 2.7.7 - Cross Site Request Forgery (CSRF) vulnerability — Serial Codes Generator and Validator with WooCommerce SupportCWE-352 | 4.3 | Medium | 2025-03-27 |
This page lists every published CVE security advisory associated with Vollstart. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.