Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

brainstormforce — Vulnerabilities & Security Advisories 49

Browse all 49 CVE security advisories affecting brainstormforce. AI-powered Chinese analysis, POCs, and references for each vulnerability.

BrainStormForce operates as a provider of enterprise collaboration and knowledge management solutions, primarily serving organizations seeking centralized information sharing platforms. Security audits have identified forty-nine Common Vulnerabilities and Exposures (CVEs) associated with its software ecosystem, indicating a significant historical attack surface. The most prevalent vulnerability classes include Cross-Site Scripting (XSS), which allows attackers to inject malicious scripts into web pages viewed by other users, and Remote Code Execution (RCE) flaws that enable unauthorized control over server systems. Additionally, instances of broken access control and privilege escalation have been documented, suggesting weaknesses in user permission management. While no single catastrophic data breach has been widely publicized as a direct result of these specific CVEs, the cumulative nature of these flaws highlights the necessity for rigorous patch management and continuous security monitoring to mitigate risks within deployed environments.

Found 9 results / 49Clear Filters
Top products by brainstormforce: Spectra Gutenberg Blocks – Website Builder for the Block Editor Ultimate Addons for Elementor SureForms – Contact Form, Payment Form & Other Custom Form Builder Ultimate Addons for Beaver Builder – Lite CartFlows – Funnel Builder & Checkout Plugin for WooCommerce Starter Templates – AI-Powered Templates for Elementor & Gutenberg Astra Custom Fonts – Host Your Fonts Locally OttoKit: All-in-One Automation Platform SureForms – Drag and Drop Form Builder for WordPress Starter Templates — Elementor, Gutenberg & Beaver Builder Templates Import / Export Customizer Settings Lightweight Sidebar Manager SureMail – SMTP and Email Logs Plugin with Amazon SES, Postmark, and Other Providers
CVE IDTitleCVSSSeverityPublished
CVE-2025-8488 Ultimate Addons for Elementor (Formerly Elementor Header & Footer Builder) <= 2.4.6 - Missing Authorization to Authenticated (Subscriber+) Limited Settings Update — Ultimate Addons for ElementorCWE-862 4.3 Medium2025-08-02
CVE-2024-11230 Elementor Header & Footer Builder <= 1.6.46 - Authenticated (Contributor+) Stored Cross-Site Scripting via Page Title Widget — Ultimate Addons for ElementorCWE-79 6.4 Medium2024-12-23
CVE-2024-10325 Elementor Header & Footer Builder <= 1.6.45 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload — Ultimate Addons for ElementorCWE-79 6.4 Medium2024-11-08
CVE-2024-10050 Elementor Header & Footer Builder <= 1.6.43 - Authenticated (Contributor+) Information Disclosure via Shortcode — Ultimate Addons for ElementorCWE-200 4.3 Medium2024-10-24
CVE-2024-5757 Elementor Header & Footer Builder <= 1.6.35 - Authenticated (Contributor+) Stored Cross-Site Scripting via Site Title Widget — Ultimate Addons for ElementorCWE-79 6.4 Medium2024-06-13
CVE-2024-2618 Elementor Header & Footer Builder <= 1.6.26 - Authenticated (Contributor+) Stored Cross-Site Scripting — Ultimate Addons for ElementorCWE-87 6.4 Medium2024-05-24
CVE-2024-2619 Elementor Header & Footer Builder <= 1.6.26 - Authenticated (Author+) HTML Injection — Ultimate Addons for ElementorCWE-862 5.0 Medium2024-05-16
CVE-2024-4634 Elementor Header & Footer Builder <= 1.6.28 - Authenticated (Contributor+) Stored Cross-Site Scripting — Ultimate Addons for ElementorCWE-79 6.4 Medium2024-05-16
CVE-2024-1237 Elementor Header & Footer Builder <= 1.6.24 - Authenticated (Contributor+) Stored Cross-Site Scripting — Ultimate Addons for ElementorCWE-79 6.4 Medium2024-03-13

This page lists every published CVE security advisory associated with brainstormforce. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.