Browse all 8 CVE security advisories affecting dearhive. AI-powered Chinese analysis, POCs, and references for each vulnerability.
DearHive is a customer engagement platform designed to streamline communication between businesses and clients through centralized messaging and analytics. Historically, the platform has been susceptible to multiple remote code execution (RCE) and cross-site scripting (XSS) vulnerabilities, often stemming from improper input validation and insecure API endpoints. Privilege escalation flaws have also been documented, allowing unauthorized access to sensitive customer data. While no major public security incidents have been reported, the eight CVEs on record indicate consistent security challenges, particularly in web application components and authentication mechanisms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-29807 | WordPress DearFlip plugin <= 2.2.26 - Cross Site Scripting (XSS) vulnerability — DearFlipCWE-79 | 6.5 | Medium | 2024-03-27 |
This page lists every published CVE security advisory associated with dearhive. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.