Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

azzaroco — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting azzaroco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Azzaroco is a software platform primarily used for enterprise content management and workflow automation. Historically, it has been vulnerable to multiple remote code execution flaws, cross-site scripting attacks, and privilege escalation issues, accounting for its 13 recorded CVEs. The platform's complex architecture and extensive third-party integrations have contributed to persistent security challenges. While no major public incidents have been widely documented, the consistent pattern of vulnerabilities suggests ongoing risks for organizations relying on this system, particularly in environments where unpatched instances are exposed to public networks.

Top products by azzaroco: WP SuperBackup Ultimate Membership Pro Ultimate Learning Pro Super Backup & Clone - Migrate for WordPress Indeed Ultimate Learning Pro
CVE IDTitleCVSSSeverityPublished
CVE-2026-25357 WordPress Ultimate Membership Pro plugin <= 13.7 - Account Takeover vulnerability — Ultimate Membership ProCWE-288 8.1 High2026-03-25
CVE-2026-28113 WordPress Ultimate Learning Pro plugin <= 3.9.1 - Reflected Cross Site Scripting (XSS) vulnerability — Ultimate Learning ProCWE-79 7.1 High2026-03-05
CVE-2025-64251 WordPress Ultimate Learning Pro plugin <= 3.9.3 - Arbitrary Content Deletion vulnerability — Ultimate Learning ProCWE-862 4.9 Medium2025-12-16
CVE-2024-13846 Indeed Ultimate Learning Pro <= 3.9 - Authenticated (Administrator+) SQL Injection via post_id Parameter — Indeed Ultimate Learning ProCWE-89 4.9 Medium2025-02-21
CVE-2024-56069 WordPress WP SuperBackup plugin <= 2.3.3 - Reflected Cross Site Scripting (XSS) vulnerability — WP SuperBackupCWE-79 7.1 High2025-01-02
CVE-2024-56070 WordPress WP SuperBackup plugin <= 2.3.3 - Multiple Subscriber+ Broken Access Control vulnerabilities — WP SuperBackupCWE-862 7.4 High2024-12-31
CVE-2024-56064 WordPress WP SuperBackup plugin <= 2.3.3 - Unauthenticated Arbitrary File Upload vulnerability — WP SuperBackupCWE-434 10.0 Critical2024-12-31
CVE-2024-56068 WordPress WP SuperBackup plugin <= 2.3.3 - Subscriber+ PHP Object Injection vulnerability — WP SuperBackupCWE-502 7.5 High2024-12-31
CVE-2024-56067 WordPress WP SuperBackup plugin <= 2.3.3 - Unauthenticated Backup File Download Vulnerability — WP SuperBackupCWE-862 7.5 High2024-12-31
CVE-2024-9290 Super Backup & Clone - Migrate for WordPress <= 2.3.3 - Unauthenticated Arbitrary File Upload — Super Backup & Clone - Migrate for WordPressCWE-434 9.8 Critical2024-12-13
CVE-2024-43242 WordPress Indeed Ultimate Membership Pro plugin <= 12.7 - Unauthenticated PHP Object Injection vulnerability — Ultimate Membership ProCWE-502 9.0 Critical2024-08-19
CVE-2024-43240 WordPress Indeed Ultimate Membership Pro plugin <= 12.7 - Unauthenticated Privilege Escalation vulnerability — Ultimate Membership ProCWE-287 9.4 Critical2024-08-19
CVE-2024-43241 WordPress Indeed Ultimate Membership Pro plugin <= 12.7 - Reflected Cross Site Scripting (XSS) vulnerability — Ultimate Membership ProCWE-79 7.1 High2024-08-18

This page lists every published CVE security advisory associated with azzaroco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.