Browse all 4 CVE security advisories affecting benbusby. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Benbusby develops open-source web applications with a core focus on collaborative platforms and content management systems. Historically, their code has been susceptible to cross-site scripting (XSS) and remote code execution (RCE) vulnerabilities, often stemming from improper input validation and insecure deserialization. Security assessments reveal patterns of privilege escalation flaws in administrative interfaces. While no major public security incidents have been documented, the four CVEs associated with their projects highlight recurring issues in sanitization and access control, emphasizing the need for rigorous input handling and secure coding practices in their development lifecycle.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-22417 | Whoogle Search Cross-site Scripting vulnerability — whoogle-searchCWE-79 | 6.1 | Medium | 2024-01-23 |
| CVE-2024-22205 | Whoogle Search Server Side Request Forgery vulnerability — whoogle-searchCWE-918 | 9.1 | Critical | 2024-01-23 |
| CVE-2024-22204 | Whoogle Search Limited File Write vulnerability — whoogle-searchCWE-22 | 5.3 | Medium | 2024-01-23 |
| CVE-2024-22203 | Whoogle Search Server Side Request Forgery vulnerability — whoogle-searchCWE-918 | 9.1 | Critical | 2024-01-23 |
This page lists every published CVE security advisory associated with benbusby. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.