Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ashishajani — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting ashishajani. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Ashishajani focuses on web application security research, identifying vulnerabilities in popular software and frameworks. Their CVE history primarily reveals Remote Code Execution (RCE) and Cross-Site Scripting (XSS) flaws, often in authentication mechanisms and user input processing. Security analysis shows consistent patterns in privilege escalation vulnerabilities within administrative interfaces. While no major public security incidents are directly attributed to this researcher, their contributions to vulnerability disclosure have impacted multiple enterprise and open-source projects. The researcher's work demonstrates particular attention to input validation flaws and insecure direct object references, with findings spanning both web and mobile application security domains.

Top products by ashishajani: WP Simple HTML Sitemap WP Church Donation Contact Form vCard Generator
CVE IDTitleCVSSSeverityPublished
CVE-2025-13717 Contact Form vCard Generator <= 2.4 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'wp-gvc-cf-download-id' Parameter — Contact Form vCard GeneratorCWE-862 5.3 Medium2026-01-09
CVE-2024-13690 WP Church Donation <= 1.7 - Unauthenticated Stored Cross-Site Scripting — WP Church DonationCWE-79 7.2 High2025-03-25
CVE-2024-7385 WordPress Simple HTML Sitemap <= 3.1 - Authenticated (Admin+) SQL Injection — WP Simple HTML SitemapCWE-89 9.1 Critical2024-09-25

This page lists every published CVE security advisory associated with ashishajani. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.