Browse all 3 CVE security advisories affecting elliotvs. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Elliotvs primarily develops security research tools and penetration testing utilities, with a core focus on identifying vulnerabilities in web applications and network systems. Historically, their work has commonly exposed Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation flaws in various platforms. The security researcher maintains a factual approach to disclosure, with three CVEs attributed to their findings. No major security incidents have been publicly linked to their activities, though their research has consistently highlighted critical weaknesses in both open-source and commercial software. Their contributions remain centered on improving defensive security through responsible vulnerability disclosure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-3598 | Coupon Affiliates – Affiliate Plugin for WooCommerce <= 6.3.0 - Reflected Cross-Site Scripting via 'commission_summary' Parameter — Coupon Affiliates – Affiliate Plugin for WooCommerceCWE-79 | 6.1 | Medium | 2025-04-18 |
| CVE-2024-12421 | Coupon Affiliates – Affiliate Plugin for WooCommerce <= 5.16.7.1 - Unauthenticated Arbitrary Shortcode Execution and Reflected Cross-Site Scripting — Coupon Affiliates – Affiliate Plugin for WooCommerceCWE-94 | 6.5 | Medium | 2024-12-13 |
| CVE-2023-5135 | Simple Cloudflare Turnstile <= 1.23.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Simple CAPTCHA Alternative with Cloudflare TurnstileCWE-79 | 6.4 | Medium | 2023-09-26 |
This page lists every published CVE security advisory associated with elliotvs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.