Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

brandtoss — Vulnerabilities & Security Advisories 12

Browse all 12 CVE security advisories affecting brandtoss. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Brandtoss operates as a web-based platform providing content management and digital marketing solutions, primarily serving businesses needing online presence management. Historically, the software has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its 12 recorded CVEs. Notable security characteristics include insufficient input validation and inadequate access controls in several versions. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities suggests ongoing challenges in secure coding practices, particularly in user interaction handling and permission management.

Top products by brandtoss: WP Mailster
CVE IDTitleCVSSSeverityPublished
CVE-2025-24688 WordPress WP Mailster Plugin <= 1.8.20.0 - Reflected Cross Site Scripting (XSS) vulnerability — WP MailsterCWE-79 7.1 High2025-02-14
CVE-2025-24567 WordPress WP Mailster plugin <= 1.8.16.0 - Sensitive Data Exposure vulnerability — WP MailsterCWE-201 6.5 Medium2025-02-14
CVE-2025-24598 WordPress WP Mailster plugin <= 1.8.17.0 - Reflected Cross Site Scripting (XSS) vulnerability — WP MailsterCWE-79 7.1 High2025-02-04
CVE-2025-24559 WordPress WP Mailster plugin <= 1.8.15.0 - Reflected Cross Site Scripting (XSS) vulnerability — WP MailsterCWE-79 7.1 High2025-02-03
CVE-2025-22303 WordPress WP Mailster plugin <= 1.8.17.0 - Sensitive Data Exposure vulnerability — WP MailsterCWE-201 5.3 Medium2025-01-07
CVE-2024-54355 WordPress WP Mailster plugin <= 1.8.17.0 - Cross Site Request Forgery (CSRF) vulnerability — WP MailsterCWE-352 4.3 Medium2024-12-16
CVE-2024-53803 WordPress WP Mailster plugin <= 1.8.16.0 - Broken Access Control vulnerability — WP MailsterCWE-862 6.5 Medium2024-12-06
CVE-2024-53807 WordPress WP Mailster plugin <= 1.8.16.0 - SQL Injection vulnerability — WP MailsterCWE-89 8.5 High2024-12-06
CVE-2024-53804 WordPress WP Mailster plugin <= 1.8.16.0 - Sensitive Data Exposure vulnerability — WP MailsterCWE-201 7.5 High2024-12-06
CVE-2024-53805 WordPress WP Mailster plugin <= 1.8.16.0 - Broken Access Control vulnerability — WP MailsterCWE-862 7.5 High2024-12-06
CVE-2024-11782 WP Mailster <= 1.8.17.0 - Authenticated (Contributor+) Stored Cross-Site Scripting — WP MailsterCWE-79 6.4 Medium2024-12-03
CVE-2024-53737 WordPress WP Mailster plugin <= 1.8.16.0 - Cross Site Scripting (XSS) vulnerability — WP MailsterCWE-79 6.5 Medium2024-11-28

This page lists every published CVE security advisory associated with brandtoss. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.