Browse all 5 CVE security advisories affecting bastho. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Bastho is a web application framework primarily used for building content management systems and e-commerce platforms. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure default configurations. The framework's modular architecture has introduced additional risks through third-party extensions with inconsistent security practices. While no major public security incidents have been widely documented, its five CVEs indicate recurring issues in authentication mechanisms and data sanitization, suggesting developers should implement strict input filtering and regular security audits when deploying Bastho-based solutions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-11324 | Accounting for WooCommerce <= 1.6.6 - Reflected Cross-Site Scripting — Accounting for WooCommerceCWE-79 | 6.1 | Medium | 2024-12-05 |
This page lists every published CVE security advisory associated with bastho. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.