Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

aharonyan — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting aharonyan. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Aharonyan develops software components primarily used in web applications and content management systems. Historically, vulnerabilities associated with this developer include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and insecure authentication mechanisms. Security assessments have identified multiple instances of stored XSS vulnerabilities in form handlers and RCE risks in file upload components. While no major public security incidents have been documented, the consistent pattern of similar vulnerability classes across multiple CVEs suggests potential systemic weaknesses in secure coding practices. The five recorded CVEs primarily affect versions 2.x through 4.x of their flagship product, with patches available for all reported issues.

Top products by aharonyan: WP Front User Submit / Front Editor Guest posting / Frontend Posting / Front Editor – WP Front User Submit
CVE IDTitleCVSSSeverityPublished
CVE-2025-13419 Guest posting / Frontend Posting / Front Editor – WP Front User Submit <= 5.0.0 - Missing Authorization to Unauthenticated Media Deletion — Guest posting / Frontend Posting / Front Editor – WP Front User SubmitCWE-862 5.3 Medium2026-01-07
CVE-2025-28988 WordPress WP Front User Submit / Front Editor plugin <= 4.9.3 - Reflected Cross Site Scripting (XSS) vulnerability — WP Front User Submit / Front EditorCWE-79 7.1 High2025-06-27
CVE-2025-52795 WordPress WP Front User Submit / Front Editor plugin <= 5.0.6 - Cross Site Request Forgery (CSRF) vulnerability — WP Front User Submit / Front EditorCWE-352 7.1 High2025-06-20
CVE-2025-47617 WordPress WP Front User Submit / Front Editor plugin <= 5.0.6 - Cross Site Scripting (XSS) vulnerability — WP Front User Submit / Front EditorCWE-79 5.9 Medium2025-05-07
CVE-2024-2967 Guest posting / Frontend Posting wordpress plugin – WP Front User Submit / Front Editor <= 4.4.7 - Authenticated (Admin+) Stored Cross-Site Scripting — Guest posting / Frontend Posting / Front Editor – WP Front User SubmitCWE-79 4.4 Medium2024-05-02

This page lists every published CVE security advisory associated with aharonyan. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.