Browse all 11 CVE security advisories affecting ZoomIt. AI-powered Chinese analysis, POCs, and references for each vulnerability.
ZoomIt is a screen zooming and annotation tool primarily used for presentations and demonstrations. Historically, it has been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. The application has accumulated 11 CVEs, with several allowing attackers to execute arbitrary code or bypass security controls. Notable incidents include flaws that could enable unauthorized access to system resources and improper input validation leading to XSS attacks. Despite its utility, ZoomIt's security track record indicates potential risks, particularly in environments where untrusted users might interact with the application or where systems lack additional security controls.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-47568 | WordPress ZoomSounds plugin <= 6.91 - PHP Object Injection vulnerability — ZoomSoundsCWE-502 | 9.8 | Critical | 2025-05-23 |
This page lists every published CVE security advisory associated with ZoomIt. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.