Browse all 3 CVE security advisories affecting benbodhi. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Benbodhi operates as a security testing platform focused on identifying vulnerabilities in web applications and APIs. Historically, their recorded CVEs reveal patterns in remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from input validation flaws and insecure authentication mechanisms. The platform emphasizes automated scanning capabilities but has occasionally produced false positives or missed complex vulnerabilities in its assessments. While no major security incidents have been publicly attributed to benbodhi, their CVE history suggests a need for continuous improvement in detection accuracy, particularly for business logic flaws and emerging attack vectors that automated tools may overlook.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-10222 | SVG Support <= 2.5.10 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload — SVG SupportCWE-79 | 6.4 | Medium | 2025-02-21 |
| CVE-2023-6708 | SVG Support <= 2.5.7 - Authenticated (Author+) Cross-Site Scripting via SVG — SVG SupportCWE-79 | 5.4 | Medium | 2024-07-18 |
| CVE-2022-4022 | WordPress plugin SVG Support 跨站脚本漏洞 — SVG Support | 6.4 | Medium | 2022-11-16 |
This page lists every published CVE security advisory associated with benbodhi. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.