Browse all 6 CVE security advisories affecting cyberhobo. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Cyberhobo primarily targets enterprise applications and web services, focusing on uncovering vulnerabilities in software and network infrastructure. Historically, this researcher has identified multiple remote code execution (RCE) and cross-site scripting (XSS) flaws, along with privilege escalation weaknesses in various systems. With six CVEs attributed to them, cyberhobo demonstrates a consistent ability to find critical security gaps across different platforms. While no major public incidents are directly linked to this researcher, their contributions to vulnerability disclosure have helped improve security postures in affected organizations. Their work often emphasizes practical exploitation techniques, highlighting real-world risks in commonly deployed software.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-4061 | Geo Mashup <= 1.13.18 - Unauthenticated Time-Based SQL Injection via 'map_post_type' Parameter — Geo MashupCWE-89 | 7.5 | High | 2026-05-02 |
| CVE-2026-4062 | Geo Mashup <= 1.13.18 - Unauthenticated Time-Based SQL Injection via 'object_ids' Parameter — Geo MashupCWE-89 | 7.5 | High | 2026-05-02 |
| CVE-2026-4060 | Geo Mashup <= 1.13.18 - Unauthenticated Time-Based SQL Injection via 'sort' Parameter — Geo MashupCWE-89 | 7.5 | High | 2026-05-02 |
| CVE-2026-6457 | Geo Mashup <= 1.13.19 - Authenticated (Subscriber+) SQL Injection via 'geo_mashup_null_fields' Parameter — Geo MashupCWE-89 | 6.5 | Medium | 2026-05-02 |
| CVE-2026-2416 | Geo Mashup <= 1.13.17 - Unauthenticated SQL Injection via 'sort' Parameter — Geo MashupCWE-89 | 7.5 | High | 2026-02-25 |
| CVE-2024-8990 | Geo Mashup <= 1.13.13 - Authenticated (Contributor+) Stored Cross-Site Scripting via geo_mashup_visible_posts_list Shortcode — Geo MashupCWE-79 | 6.4 | Medium | 2024-10-01 |
This page lists every published CVE security advisory associated with cyberhobo. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.