Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

creativemotion — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting creativemotion. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Creativemotion develops digital asset management and video editing software primarily for media production workflows. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and insecure authentication mechanisms. Security researchers have identified multiple instances of stored XSS vulnerabilities in web interfaces and RCE risks through manipulated media files. While no major public breaches have been documented, the consistent pattern of vulnerabilities in their web components suggests ongoing challenges in secure coding practices, particularly for client-side protections and file handling operations.

Top products by creativemotion: Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer Social Slider Feed Titan Anti-spam & Security
CVE IDTitleCVSSSeverityPublished
CVE-2025-13749 Clearfy <= 2.4.0 - Cross-Site Request Forgery to Update Notification Tampering — Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, DeferCWE-352 4.3 Medium2026-01-09
CVE-2024-13338 Webcraftic Clearfy – WordPress optimization plugin <= 2.3.1 - Cross-Site Request Forgery to Clear Cache — Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, DeferCWE-352 5.3 Medium2025-04-12
CVE-2024-13337 Webcraftic Clearfy – WordPress optimization plugin <= 2.3.2 - Cross-Site Request Forgery to Plugin Settings Update via 'setup-wbcr_clearfy' — Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, DeferCWE-352 4.3 Medium2025-04-12
CVE-2024-38777 WordPress Titan Anti-spam & Security plugin <= 7.3.6 - Broken Access Control vulnerability — Titan Anti-spam & SecurityCWE-862 6.5 Medium2024-11-01
CVE-2024-43215 WordPress Social Slider Feed plugin <= 2.2.2 - Broken Access Control vulnerability — Social Slider FeedCWE-862 4.3 Medium2024-11-01

This page lists every published CVE security advisory associated with creativemotion. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.