Browse all 4 CVE security advisories affecting devfelixmoira. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Devfelixmoira primarily develops web applications and APIs for enterprise clients, with a core focus on custom business solutions. Historically, their codebase has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, as evidenced by their four recorded CVEs. Security assessments reveal inconsistent input validation and insufficient access controls in several components. While no major public security incidents have been documented, their vulnerability pattern suggests a need for strengthened secure coding practices, particularly in authentication mechanisms and data sanitization. The organization has shown improvement in patch response times but remains at moderate risk for exploitation in legacy systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-52791 | WordPress Knowledge Base – Knowledge Base Maker plugin <= 1.1.8 - Cross Site Request Forgery (CSRF) Vulnerability — Knowledge Base – Knowledge Base MakerCWE-352 | 7.1 | High | 2025-06-20 |
| CVE-2024-54276 | WordPress Poll Builder plugin <= 1.3.5 - Cross Site Scripting (XSS) vulnerability — Poll BuilderCWE-79 | 6.5 | Medium | 2024-12-13 |
| CVE-2022-4533 | Limit Login Attempts Plus <= 1.1.0 - IP Address Spoofing to Protection Mechanism Bypass — Limit Login Attempts Plus – WordPress Limit Login Attempts By FelixCWE-348 | 5.3 | Medium | 2024-09-19 |
| CVE-2024-0844 | WordPress plugin Popup More Popups, Lightboxes, and more popup modules 安全漏洞 — Popup More Popups, Lightboxes, and more popup modules | 4.7 | Medium | 2024-02-02 |
This page lists every published CVE security advisory associated with devfelixmoira. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.