Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

designingmedia — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting designingmedia. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Designingmedia develops digital media solutions with a core focus on web-based content management systems. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been documented, their CVE history reveals consistent patterns of insecure implementation. The organization's security posture appears reactive rather than proactive, with vulnerabilities typically addressed after disclosure rather than through preventive security measures. Their codebase frequently contains hardcoded credentials and lacks proper output encoding, creating persistent risks for deployed instances.

Top products by designingmedia: Hostiko Instant VA Energox Eleganzo
CVE IDTitleCVSSSeverityPublished
CVE-2025-15470 Eleganzo <= 1.2 - Authenticated (Subscriber+) Arbitrary Directory Deletion — EleganzoCWE-22 6.5 Medium2026-04-14
CVE-2026-24970 WordPress Energox theme <= 1.2 - Arbitrary File Deletion vulnerability — EnergoxCWE-22 7.7 High2026-03-25
CVE-2026-24969 WordPress Instant VA theme <= 1.0.1 - Arbitrary File Deletion vulnerability — Instant VACWE-22 7.7 High2026-03-25
CVE-2025-67949 WordPress Hostiko theme < 94.3.6 - Cross Site Scripting (XSS) vulnerability — HostikoCWE-79 7.1 High2026-01-22
CVE-2025-27014 WordPress Hostiko Theme < 30.1 - Cross Site Scripting (XSS) vulnerability — HostikoCWE-79 7.1 High2025-03-26
CVE-2025-27015 WordPress Hostiko Theme < 30.1 - Local File Inclusion vulnerability — HostikoCWE-98 7.5 High2025-03-26

This page lists every published CVE security advisory associated with designingmedia. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.