Browse all 4 CVE security advisories affecting creativeon. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Creativeon develops digital content creation tools primarily serving creative professionals and media enterprises. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been widely documented, their CVE history suggests consistent exposure to web application and authentication-related weaknesses. The company's security posture appears to prioritize rapid feature development over robust hardening, resulting in recurring but typically low-to-medium severity issues that require timely patching to prevent potential exploitation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-9195 | WHMPress - WHMCS Client Area <= 4.3-revision-3- Authenticated (Subscriber+) Arbitrary Options Update — WHMCS Client Area for WordPress by WHMpressCWE-862 | 8.8 | High | 2025-02-28 |
| CVE-2024-9193 | WHMpress <= 6.3-revision-0 - Unauthenticated Local File Inclusion to Arbitrary Options Update — WHMpress - WHMCS WordPress Integration PluginCWE-98 | 9.8 | Critical | 2025-02-28 |
| CVE-2024-43247 | WordPress WHMpress plugin <= 6.2-revision-5 - Subscriber+ Arbitrary Settings Change vulnerability — WHMpressCWE-862 | 8.8 | High | 2024-08-19 |
| CVE-2024-43246 | WordPress WHMpress plugin <= 6.2-revision-5 - Reflected Cross Site Scripting (XSS) vulnerability — WHMpressCWE-79 | 7.1 | High | 2024-08-18 |
This page lists every published CVE security advisory associated with creativeon. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.