Browse all 3 CVE security advisories affecting crestaproject. AI-powered Chinese analysis, POCs, and references for each vulnerability.
CrestaProject is a software platform focused on customer engagement analytics and interaction optimization. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and access control flaws. The platform has recorded three CVEs to date, with no major public security incidents reported. Its security posture reflects common challenges in web-based applications handling sensitive customer data, requiring regular patching and secure coding practices to mitigate risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-51680 | WordPress Cresta Addons for Elementor plugin <= 1.0.9 - Stored Cross Site Scripting (XSS) vulnerability — Cresta Addons for ElementorCWE-79 | 6.5 | Medium | 2024-11-04 |
This page lists every published CVE security advisory associated with crestaproject. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.