Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

davidfcarr — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting davidfcarr. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Davidfcarr specializes in identifying vulnerabilities in web applications and enterprise software, with a focus on remote code execution and cross-site scripting flaws. Their work has consistently exposed privilege escalation weaknesses in authentication systems and content management platforms. While no major public incidents are directly attributed to this researcher, their contributions to CVE records demonstrate a pattern of uncovering critical flaws in widely deployed systems. The 10 CVEs on record highlight a consistent ability to identify and document security gaps, particularly in input validation and access control mechanisms, making their findings valuable for improving software security postures across multiple industries.

Top products by davidfcarr: RSVPMaker RSVPMarker RSVPMaker for Toastmasters RSVPMaker Volunteer Roles My Marginalia Quick Playground
CVE IDTitleCVSSSeverityPublished
CVE-2026-1830 Quick Playground <= 1.3.1 - Missing Authorization to Unauthenticated Arbitrary File Upload — Quick PlaygroundCWE-862 9.8 Critical2026-04-09
CVE-2025-48278 WordPress RSVPMarker plugin <= 11.5.6 - SQL Injection Vulnerability — RSVPMarkerCWE-89 8.5 High2025-05-19
CVE-2025-39435 WordPress My Marginalia plugin <= 1.0.6 - CSRF to Stored XSS vulnerability — My MarginaliaCWE-352 7.1 High2025-04-17
CVE-2025-31552 WordPress RSVPMarker plugin <= 11.6.7 - SQL Injection vulnerability — RSVPMarkerCWE-89 9.3 Critical2025-04-01
CVE-2025-24600 WordPress RSVPMaker plugin <= 11.4.5 - Broken Access Control vulnerability — RSVPMarkerCWE-862 5.3 Medium2025-01-27
CVE-2025-23531 WordPress RSVPMaker Volunteer Roles plugin <= 1.5.1 - Reflected Cross Site Scripting (XSS) vulnerability — RSVPMaker Volunteer RolesCWE-79 7.1 High2025-01-27
CVE-2024-50531 WordPress RSVPMaker for Toastmasters plugin <= 6.2.4 - Arbitrary File Upload vulnerability — RSVPMaker for ToastmastersCWE-434 10.0 Critical2024-11-04
CVE-2022-1768 RSVPMaker <= 9.3.2 - Unauthenticated SQL Injection — RSVPMakerCWE-89 9.8 Critical2022-06-13
CVE-2022-1505 RSVPMaker <= 9.2.6 - Unauthenticated SQL Injection — RSVPMakerCWE-89 9.8 Critical2022-05-10
CVE-2022-1453 RSVPMaker <= 9.2.5 - Unauthenticated SQL Injection — RSVPMakerCWE-89 9.8 Critical2022-05-10

This page lists every published CVE security advisory associated with davidfcarr. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.