Browse all 5 CVE security advisories affecting cimatti. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Cimatti develops industrial control systems and automation software, primarily serving manufacturing and infrastructure sectors. Historically, vulnerabilities in their products have commonly included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access control issues. While no major public security incidents have been widely documented, the five CVEs associated with their products highlight ongoing security concerns in industrial environments where their systems are deployed. These vulnerabilities typically impact system integrity and could potentially enable unauthorized access or disruption of critical operations, underscoring the importance of regular security updates in industrial settings.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-49069 | WordPress Contact Forms by Cimatti plugin <= 1.9.8 - Cross Site Request Forgery (CSRF) vulnerability — Contact Forms by CimattiCWE-352 | 4.3 | Medium | 2025-06-02 |
| CVE-2024-12184 | WordPress Contact Forms by Cimatti <= 1.9.4 - Missing Authorization to Unauthenticated Form Submission Download — Contact Forms by CimattiCWE-862 | 5.3 | Medium | 2025-02-01 |
| CVE-2024-10521 | WordPress Contact Forms by Cimatti <= 1.9.2 - Cross-Site Request Forgery via process_bulk_action Function — Contact Forms by CimattiCWE-352 | 4.3 | Medium | 2024-11-27 |
| CVE-2024-30549 | WordPress Contact Forms by Cimatti plugin <= 1.8.0 - Cross Site Scripting (XSS) vulnerability — Contact Forms by CimattiCWE-79 | 5.9 | Medium | 2024-03-31 |
| CVE-2023-2563 | WordPress Contact Forms by Cimatti <= 1.5.7 - Cross-Site Request Forgery via _accua_forms_form_edit_action — Contact Forms by CimattiCWE-352 | 4.3 | Medium | 2023-06-13 |
This page lists every published CVE security advisory associated with cimatti. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.