Browse all 5 CVE security advisories affecting elbanyaoui. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Elbanyaoui develops web applications and APIs primarily for e-commerce platforms, with a history of vulnerabilities including remote code execution, cross-site scripting, and privilege escalation. The organization has recorded five CVEs, often stemming from insufficient input validation and insecure authentication mechanisms. Notable security characteristics include inconsistent patch management and inadequate access controls, leading to several high-severity incidents. These vulnerabilities have allowed attackers to execute arbitrary code, steal session cookies, and escalate privileges to administrative levels. The pattern of security lapses suggests systemic issues in secure coding practices and vulnerability remediation processes.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-8787 | Smart Online Order for Clover <= 1.5.7 - Reflected Cross-Site Scripting — Smart Online Order for CloverCWE-79 | 6.1 | Medium | 2024-10-16 |
| CVE-2024-9895 | Smart Online Order for Clover <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via moo_receipt_link Shortcode — Smart Online Order for CloverCWE-79 | 6.4 | Medium | 2024-10-15 |
| CVE-2024-7030 | Smart Online Order for Clover <= 1.5.6 - Missing Authorization to Authenticated (Subscriber+) Plugin Data Update — Smart Online Order for CloverCWE-862 | 4.3 | Medium | 2024-08-21 |
| CVE-2024-7032 | Smart Online Order for Clover <= 1.5.6 - Missing Authorization to Plugin Deactivation and Data Deletion — Smart Online Order for CloverCWE-862 | 6.5 | Medium | 2024-08-21 |
| CVE-2024-0626 | WooCommerce Clover Payment Gateway <= 1.3.1 - Missing Authorization via callback_handler — Clover Payment Gateway by Zaytech for WooCommerceCWE-284 | 5.3 | Medium | 2024-04-09 |
This page lists every published CVE security advisory associated with elbanyaoui. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.