Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

cservit — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting cservit. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cservit is a network monitoring and management solution primarily used for IT infrastructure oversight. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues. The product's web interface has been particularly prone to input validation weaknesses, allowing unauthorized access or system compromise. While no major public security incidents have been widely documented, the five CVEs recorded reveal consistent patterns of insufficient sanitization in API endpoints and administrative functions. These vulnerabilities typically stem from improper access controls and unauthenticated endpoints, posing significant risks in enterprise environments where the software manages critical network components.

Top products by cservit: affiliate-toolkit – Multi-Network Affiliate & Amazon Product Display
CVE IDTitleCVSSSeverityPublished
CVE-2024-10675 affiliate-toolkit <= 3.6.7 - Reflected Cross-Site Scripting — affiliate-toolkit – Multi-Network Affiliate & Amazon Product DisplayCWE-79 6.1 Medium2024-11-21
CVE-2024-10227 affiliate-toolkit <= 3.6.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via atkp_product Shortcode — affiliate-toolkit – Multi-Network Affiliate & Amazon Product DisplayCWE-79 6.4 Medium2024-10-29
CVE-2024-6562 affiliate-toolkit <= 3.5.5 - Unauthenticated Full Path Dislcosure — affiliate-toolkit – Multi-Network Affiliate & Amazon Product DisplayCWE-200 5.3 Medium2024-08-09
CVE-2024-1851 affiliate-toolkit – WordPress Affiliate Plugin <= 3.5.4 - Missing Authorization via atkp_create_list — affiliate-toolkit – Multi-Network Affiliate & Amazon Product DisplayCWE-862 6.3 Medium2024-03-08
CVE-2024-2298 affiliate-toolkit – WordPress Affiliate Plugin <= 3.5.4 - Missing Authorization via atkp_import_product — affiliate-toolkit – Multi-Network Affiliate & Amazon Product DisplayCWE-862 4.3 Medium2024-03-08

This page lists every published CVE security advisory associated with cservit. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.