Browse all 5 CVE security advisories affecting feiyuchuixue. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Feiyuchuixue develops security testing tools with a primary focus on vulnerability assessment and penetration testing. Historically, their tools have been associated with common vulnerability classes including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. The security community has noted that their tools sometimes contain vulnerabilities themselves, with five CVEs recorded to date. These issues have primarily centered on improper input validation and insufficient access controls in their testing platforms. While no major security incidents have been publicly documented, the presence of multiple CVEs indicates a need for rigorous security reviews of their tooling.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-3189 | feiyuchuixue sz-boot-parent download server-side request forgery — sz-boot-parentCWE-918 | 3.1 | Low | 2026-02-25 |
| CVE-2026-3188 | feiyuchuixue sz-boot-parent API templates path traversal — sz-boot-parentCWE-22 | 4.3 | Medium | 2026-02-25 |
| CVE-2026-3187 | feiyuchuixue sz-boot-parent API Endpoint upload unrestricted upload — sz-boot-parentCWE-434 | 6.3 | Medium | 2026-02-25 |
| CVE-2026-3186 | feiyuchuixue sz-boot-parent Password Reset password default password — sz-boot-parentCWE-1393 | 6.3 | Medium | 2026-02-25 |
| CVE-2026-3185 | feiyuchuixue sz-boot-parent API Endpoint sys-message authorization — sz-boot-parentCWE-639 | 5.3 | Medium | 2026-02-25 |
This page lists every published CVE security advisory associated with feiyuchuixue. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.