Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

eyecix — Vulnerabilities & Security Advisories 21

Browse all 21 CVE security advisories affecting eyecix. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Eyecix operates as a specialized software solution, primarily targeting enterprise environments for data management and workflow automation. Security audits have identified twenty-one distinct Common Vulnerabilities and Exposures (CVEs) associated with the platform, indicating a persistent history of security flaws. The most prevalent vulnerability classes include Remote Code Execution (RCE) and Cross-Site Scripting (XSS), which allow attackers to execute arbitrary commands or inject malicious scripts into web pages viewed by other users. Additionally, several instances of privilege escalation have been documented, enabling unauthorized users to gain elevated access levels within the system. These technical weaknesses suggest inadequate input validation and insufficient access controls in earlier versions. While no single catastrophic public breach has been widely reported as a direct result of these specific CVEs, the cumulative risk profile remains significant for organizations relying on the software. Continuous patching and rigorous security testing are essential to mitigate these known exposure points.

Top products by eyecix: JobSearch JobSearch WP Job Board Addon Jobsearch Chat
CVE IDTitleCVSSSeverityPublished
CVE-2026-32493 WordPress JobSearch plugin <= 3.2.0 - Reflected Cross Site Scripting (XSS) vulnerability — JobSearchCWE-79 7.1 High2026-03-25
CVE-2026-25377 WordPress Addon Jobsearch Chat plugin <= 3.0 - SQL Injection vulnerability — Addon Jobsearch ChatCWE-89 9.3 Critical2026-03-25
CVE-2026-25376 WordPress Addon Jobsearch Chat plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability — Addon Jobsearch ChatCWE-79 7.1 High2026-03-25
CVE-2025-62025 WordPress JobSearch plugin < 3.0.8 - PHP Object Injection vulnerability — JobSearchCWE-502 9.8 Critical2025-10-22
CVE-2025-52806 WordPress JobSearch Plugin < 3.0.8 - Local File Inclusion Vulnerability — JobSearchCWE-98 7.5 High2025-08-14
CVE-2025-52798 WordPress JobSearch plugin < 3.0.6 - Reflected Cross Site Scripting (XSS) Vulnerability — JobSearchCWE-79 7.1 High2025-07-04
CVE-2025-49978 WordPress JobSearch plugin < 3.0.6 - Insecure Direct Object References (IDOR) Vulnerability — JobSearchCWE-639 4.3 Medium2025-06-20
CVE-2024-11917 JobSearch WP Job Board <= 2.9.2 - Authentication Bypass via Social Logins — JobSearch WP Job BoardCWE-287 8.1 High2025-04-25
CVE-2024-11925 WP JobSearch <= 2.6.7 - Authentication Bypass to Account Takeover and Privilege Escalation — JobSearch WP Job BoardCWE-288 9.8 Critical2024-11-28
CVE-2024-8615 WP JobSearch <= 2.6.7 - Unauthenticated Arbitrary File Upload — JobSearch WP Job BoardCWE-434 10.0 Critical2024-11-06
CVE-2024-8614 WP JobSearch <= 2.6.7 - Authenticated (Subscriber+) Arbitrary File Upload — JobSearch WP Job BoardCWE-434 9.9 Critical2024-11-06
CVE-2024-43928 WordPress JobSearch WP Job Board WordPress Plugin plugin <= 2.5.4 - Broken Access Control vulnerability — JobSearchCWE-862 5.4 Medium2024-11-01
CVE-2024-43929 WordPress JobSearch WP Job Board WordPress Plugin plugin <= 2.5.4 - Broken Access Control vulnerability — JobSearchCWE-862 6.5 Medium2024-11-01
CVE-2024-43930 WordPress JobSearch WP Job Board WordPress Plugin plugin <= 2.5.3 - Broken Access Control vulnerability — JobSearchCWE-352 4.3 Medium2024-10-31
CVE-2024-47636 WordPress WP JobSearch plugin <= 2.5.9 - PHP Object Injection vulnerability — JobSearchCWE-502 9.8 Critical2024-10-10
CVE-2024-47394 WordPress WP JobSearch plugin <= 2.5.9 - Reflected Cross Site Scripting (XSS) vulnerability — JobSearchCWE-79 7.1 High2024-10-05
CVE-2024-43931 WordPress JobSearch WP Job Board WordPress Plugin plugin <= 2.5.3 - PHP Object Injection vulnerability — JobSearchCWE-502 9.8 Critical2024-08-29
CVE-2024-43245 WordPress JobSearch plugin <= 2.3.4 - Unauthenticated Account Takeover vulnerability — JobSearchCWE-269 9.8 Critical2024-08-19
CVE-2021-4364 JobSearch WP Job Board < = 1.8.1 - Missing Authorization on jobsearch_update_job_import_schedule_call() function — JobSearch WP Job BoardCWE-284 4.3 Medium2023-06-07
CVE-2021-4361 JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Arbitrary Options Update — JobSearch WP Job BoardCWE-284 8.8 High2023-06-07
CVE-2021-4352 JobSearch WP Job Board <= 1.8.1 - Missing Authorization to Settings Change — JobSearch WP Job BoardCWE-284 5.3 Medium2023-06-07

This page lists every published CVE security advisory associated with eyecix. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.