Browse all 3 CVE security advisories affecting YAS Global Team. AI-powered Chinese analysis, POCs, and references for each vulnerability.
YAS Global Team develops enterprise software solutions with a core focus on business process automation and workflow management systems. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and insecure authentication mechanisms. The team has addressed multiple CVEs, including critical flaws that could allow unauthorized system access or data compromise. While no major public security incidents have been documented, their vulnerability history suggests a pattern of security gaps in web interfaces and API endpoints that require continuous remediation efforts.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-47773 | WordPress Permalinks Customizer Plugin <= 2.8.2 is vulnerable to Cross Site Scripting (XSS) — Permalinks CustomizerCWE-79 | 7.1 | High | 2023-11-22 |
| CVE-2023-45103 | WordPress Permalinks Customizer Plugin <= 2.8.2 is vulnerable to Cross Site Request Forgery (CSRF) — Permalinks CustomizerCWE-352 | 4.3 | Medium | 2023-10-12 |
| CVE-2023-27433 | WordPress Make Paths Relative Plugin <= 1.3.0 is vulnerable to Cross Site Request Forgery (CSRF) — Make Paths RelativeCWE-352 | 5.4 | Medium | 2023-10-04 |
This page lists every published CVE security advisory associated with YAS Global Team. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.