Browse all 21 CVE security advisories affecting eyecix. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Eyecix operates as a specialized software solution, primarily targeting enterprise environments for data management and workflow automation. Security audits have identified twenty-one distinct Common Vulnerabilities and Exposures (CVEs) associated with the platform, indicating a persistent history of security flaws. The most prevalent vulnerability classes include Remote Code Execution (RCE) and Cross-Site Scripting (XSS), which allow attackers to execute arbitrary commands or inject malicious scripts into web pages viewed by other users. Additionally, several instances of privilege escalation have been documented, enabling unauthorized users to gain elevated access levels within the system. These technical weaknesses suggest inadequate input validation and insufficient access controls in earlier versions. While no single catastrophic public breach has been widely reported as a direct result of these specific CVEs, the cumulative risk profile remains significant for organizations relying on the software. Continuous patching and rigorous security testing are essential to mitigate these known exposure points.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25377 | WordPress Addon Jobsearch Chat plugin <= 3.0 - SQL Injection vulnerability — Addon Jobsearch ChatCWE-89 | 9.3 | Critical | 2026-03-25 |
| CVE-2026-25376 | WordPress Addon Jobsearch Chat plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability — Addon Jobsearch ChatCWE-79 | 7.1 | High | 2026-03-25 |
This page lists every published CVE security advisory associated with eyecix. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.