Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ashanjay — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting ashanjay. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ashanjay is a cybersecurity researcher focused on identifying vulnerabilities in web applications and enterprise systems. Their work primarily centers on uncovering security flaws in popular software platforms and frameworks. Historically, their reported vulnerabilities have commonly included remote code execution (RCE), cross-site scripting (XSS), and privilege escalation issues. Ashanjay's research has contributed to the remediation of multiple critical security flaws across various products. Their findings have been instrumental in improving security postures for numerous organizations, with their CVEs reflecting a consistent pattern of discovering both common and novel exploitation vectors in widely deployed systems.

Top products by ashanjay: EventON – Events Calendar EventON
CVE IDTitleCVSSSeverityPublished
CVE-2026-28037 WordPress EventON plugin <= 4.9.12 - Reflected Cross Site Scripting (XSS) vulnerability — EventONCWE-79 7.1 High2026-03-05
CVE-2025-63064 WordPress EventON plugin <= 4.9.12 - Cross Site Scripting (XSS) vulnerability — EventONCWE-79 6.5 Medium2025-12-09
CVE-2025-8091 EventON Lite <= 2.4.7 - Authenticated (Contributor+) Information Disclosure — EventON – Events CalendarCWE-200 4.3 Medium2025-08-15
CVE-2025-47565 WordPress EventON plugin <= 4.9.9 - Broken Access Control vulnerability — EventONCWE-862 6.3 Medium2025-07-04
CVE-2025-47564 WordPress EventON plugin <= 4.9.8 - Broken Access Control vulnerability — EventONCWE-862 5.3 Medium2025-05-16
CVE-2024-6180 EventON <= 2.2.15 - Missing Authorization to Unauthenticated Stored Cross-Site Scripting and Plugin Settings Updates — EventON – Events CalendarCWE-862 7.2 High2024-07-09
CVE-2023-6242 EventON - WordPress Virtual Event Calendar Plugin Pro <= 4.5.4 & Free <= 2.2.7 - Cross-Site Request Forgery via evo_eventpost_update_meta — EventON – Events CalendarCWE-352 6.5 Medium2024-01-11
CVE-2023-6244 EventON - WordPress Virtual Event Calendar Plugin <= 4.5.4 (Pro) & <= 2.2.8 (Free) - Cross-Site Request Forgery via save_virtual_event_settings — EventON – Events CalendarCWE-352 6.5 Medium2024-01-11
CVE-2023-6158 EventON - WordPress Virtual Event Calendar Plugin Pro <= 4.5.4 & Free <= 2.2.7 - Missing Authorization to Arbitrary Post Meta Update via evo_eventpost_update_meta — EventON – Events CalendarCWE-862 6.5 Medium2024-01-10
CVE-2023-4635 EventON <= 2.2.2 - Reflected Cross-Site Scripting — EventON – Events CalendarCWE-79 6.1 Medium2023-10-21

This page lists every published CVE security advisory associated with ashanjay. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.