Browse all 4 CVE security advisories affecting codemenschen. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Codemenschen develops enterprise software solutions for supply chain management and logistics operations. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls. While no major public security incidents have been documented, their CVE history indicates persistent security challenges in web application components and API endpoints. The company maintains a moderate vulnerability disclosure program but has faced criticism for slow patch remediation times. Their security posture appears typical for mid-sized enterprise software vendors, balancing feature development with security maintenance.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-13520 | Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) <= 4.4.9 - Missing Authorization to Unauthenticated Price, Date, and Note Updates — Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported)CWE-862 | 5.3 | Medium | 2025-02-20 |
| CVE-2024-51907 | WordPress WP Virtual Room Configurator plugin <= 1.0.0 - Cross Site Scripting (XSS) vulnerability — WP Virtual Room ConfiguratorCWE-79 | 6.5 | Medium | 2024-11-19 |
| CVE-2024-9165 | Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) <= 4.4.4 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload — Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported)CWE-79 | 6.4 | Medium | 2024-10-31 |
| CVE-2024-32436 | WordPress Gift Cards plugin <= 4.4.0 - Cross Site Request Forgery (CSRF) vulnerability — Gift VouchersCWE-352 | 4.3 | Medium | 2024-04-15 |
This page lists every published CVE security advisory associated with codemenschen. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.