Browse all 9 CVE security advisories affecting alexvtn. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Alexvtn primarily develops web applications and APIs, with a core focus on e-commerce platforms. Historically, their vulnerabilities have frequently included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and misconfigured access controls. While no major public security incidents have been documented, the consistent pattern of vulnerabilities across multiple products suggests systemic weaknesses in secure coding practices. Their CVE record indicates recurring issues in authentication mechanisms and data sanitization, highlighting areas requiring immediate remediation to prevent potential exploitation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-30769 | WordPress WIP WooCarousel Lite plugin <= 1.1.7 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability — WIP WooCarousel LiteCWE-352 | 7.1 | High | 2025-03-27 |
| CVE-2024-11779 | WIP WooCarousel Lite <= 1.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting — WIP WooCarousel LiteCWE-79 | 6.4 | Medium | 2024-12-05 |
This page lists every published CVE security advisory associated with alexvtn. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.