Browse all 5 CVE security advisories affecting activity-log.com. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Activity-log.com provides centralized logging and monitoring services for organizations to track system activities and security events. Historically, the platform has been vulnerable to multiple remote code execution flaws, cross-site scripting vulnerabilities, and privilege escalation issues, as evidenced by its five recorded CVEs. These weaknesses often stem from improper input validation and access control mechanisms. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on the service. The platform's security posture appears to prioritize functionality over robust hardening, making regular updates and careful configuration essential for mitigating known threats.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-32362 | WordPress WP Sessions Time Monitoring Full Automatic plugin <= 1.1.3 - Broken Access Control vulnerability — WP Sessions Time Monitoring Full AutomaticCWE-862 | 5.3 | Medium | 2026-03-13 |
| CVE-2025-24718 | WordPress WP Sessions Time Monitoring Full Automatic Plugin <= 1.1.1 - Reflected Cross Site Scripting (XSS) vulnerability — WP Sessions Time Monitoring Full AutomaticCWE-79 | 7.1 | High | 2025-01-31 |
| CVE-2024-49681 | WordPress WP Sessions Time Monitoring Full Automatic plugin <= 1.0.9 - SQL Injection vulnerability — WP Sessions Time Monitoring Full AutomaticCWE-89 | 9.3 | Critical | 2024-10-24 |
This page lists every published CVE security advisory associated with activity-log.com. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.