Browse all 7 CVE security advisories affecting e107. AI-powered Chinese analysis, POCs, and references for each vulnerability.
e107 is an open-source content management system designed for building websites and online communities. Historically, it has been susceptible to various vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with six CVEs currently documented. The platform's modular architecture and extensive plugin ecosystem have introduced security challenges, often stemming from insufficient input validation and access controls. While no major public security incidents have been widely reported, the consistent presence of vulnerabilities in older versions highlights the importance of regular updates and proper hardening for production deployments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-11941 | e107 CMS Avatar image.php path traversal — CMSCWE-22 | 5.4 | Medium | 2025-10-19 |
This page lists every published CVE security advisory associated with e107. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.