Browse all 9 CVE security advisories affecting f1logic. AI-powered Chinese analysis, POCs, and references for each vulnerability.
F1Logic develops automotive diagnostic software and vehicle communication systems. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation and insecure authentication mechanisms. The company has addressed multiple CVEs related to buffer overflows and insecure default configurations. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in their diagnostic interfaces suggests potential risks for connected vehicle ecosystems. Their software's direct vehicle access makes security implications particularly critical, though recent updates indicate improved vulnerability management practices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-64356 | WordPress Insert PHP Code Snippet plugin <= 1.4.3 - Broken Access Control vulnerability — Insert PHP Code SnippetCWE-862 | 4.3 | Medium | 2025-10-31 |
| CVE-2024-7420 | Insert PHP Code Snippet <= 1.3.6 - Cross-Site Request Forgery to Code Snippet Activate/Deactivate/Deletion — Insert PHP Code SnippetCWE-352 | 5.8 | Medium | 2024-08-15 |
| CVE-2024-0658 | Insert PHP Code Snippet <= 1.3.4 - Authenticated (Admin+) Stored Cross-Site Scripting — Insert PHP Code SnippetCWE-79 | 4.4 | Medium | 2024-02-20 |
This page lists every published CVE security advisory associated with f1logic. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.