Browse all 3 CVE security advisories affecting ayecode. AI-powered Chinese analysis, POCs, and references for each vulnerability.
AyeCode develops software development tools with a core focus on enhancing developer productivity. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, as evidenced by their three recorded CVEs. While no major public security incidents have been documented, the consistent presence of critical vulnerabilities in their tooling suggests potential risks for organizations relying on their solutions. Their security posture appears to prioritize feature development over robust security measures, resulting in recurring flaws that could allow attackers to compromise systems or escalate privileges within development environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-24673 | WordPress Ketchup Shortcodes Plugin <= 0.1.2 - Cross Site Scripting (XSS) vulnerability — Ketchup ShortcodesCWE-80 | 6.5 | Medium | 2025-01-24 |
| CVE-2024-13590 | Ketchup Shortcodes <= 0.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting — Ketchup ShortcodesCWE-79 | 6.4 | Medium | 2025-01-22 |
This page lists every published CVE security advisory associated with ayecode. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.