Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ajay — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting ajay. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ajay is primarily used for web application development and API management, serving as a middleware solution for integrating various services. Historically, Ajay has been associated with vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with 14 CVEs documented to date. Security researchers have identified consistent issues in input validation and access control mechanisms. While no major public incidents have been widely reported, the accumulation of CVEs suggests potential risks in production environments requiring strict hardening and regular patching. Organizations implementing Ajay should prioritize security reviews and monitoring to mitigate identified weaknesses.

Top products by ajay: Knowledge Base Contextual Related Posts Better Search – Relevant search results for WordPress Better Search WebberZone Top 10 — Popular Posts WebberZone Snippetz WZ Followed Posts – Display what visitors are reading Top 10
CVE IDTitleCVSSSeverityPublished
CVE-2026-2986 Contextual Related Posts <= 4.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'other_attributes' — Contextual Related PostsCWE-79 6.4 Medium2026-04-18
CVE-2026-32565 WordPress Contextual Related Posts plugin < 4.2.2 - Broken Access Control vulnerability — Contextual Related PostsCWE-862 5.3 Medium2026-03-18
CVE-2026-24938 WordPress Better Search plugin <= 4.2.1 - Cross Site Scripting (XSS) vulnerability — Better SearchCWE-79 5.9 Medium2026-02-03
CVE-2025-7431 Knowledge Base <= 2.3.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Plugin Slug — Knowledge BaseCWE-79 4.4 Medium2025-07-18
CVE-2025-5533 Knowledge Base <= 2.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — Knowledge BaseCWE-79 6.4 Medium2025-06-06
CVE-2025-47509 WordPress Top 10 plugin <= 4.1.0 - Cross Site Scripting (XSS) Vulnerability — Top 10CWE-79 6.5 Medium2025-05-07
CVE-2025-47507 WordPress Better Search plugin <= 4.1.0 - Cross Site Scripting (XSS) Vulnerability — Better SearchCWE-79 6.5 Medium2025-05-07
CVE-2025-47506 WordPress Contextual Related Posts plugin <= 4.0.2 - Cross Site Scripting (XSS) Vulnerability — Contextual Related PostsCWE-79 6.5 Medium2025-05-07
CVE-2025-4171 WZ Followed Posts – Display what visitors are reading <= 3.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — WZ Followed Posts – Display what visitors are readingCWE-79 6.4 Medium2025-05-07
CVE-2025-31874 WordPress WebberZone Snippetz plugin <= 2.1.1 - Cross Site Scripting (XSS) vulnerability — WebberZone SnippetzCWE-79 6.5 Medium2025-04-01
CVE-2024-51677 WordPress Knowledge Base plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability — Knowledge BaseCWE-79 6.5 Medium2024-11-04
CVE-2020-36761 Top 10 <= 2.9.4 - Cross-Site Request Forgery Bypass — WebberZone Top 10 — Popular PostsCWE-352 4.3 Medium2023-07-12
CVE-2021-4400 Better Search <= 2.5.2 - Cross-Site Request Forgery Bypass — Better Search – Relevant search results for WordPressCWE-352 4.3 Medium2023-07-01
CVE-2021-4373 Better Search <= 2.5.2 - Cross-Site Request Forgery to Settings Import — Better Search – Relevant search results for WordPressCWE-288 8.8 High2023-06-07

This page lists every published CVE security advisory associated with ajay. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.