Browse all 15 CVE security advisories affecting jackdewey. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Jackdewey develops web applications primarily for content management and e-commerce platforms. Historically, vulnerabilities associated with this developer frequently include remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and misconfigured access controls. While no major public security incidents have been documented, the consistent pattern of vulnerabilities across multiple products suggests systemic security weaknesses in development practices. The 15 CVEs on record indicate recurring issues that could allow attackers to compromise systems, manipulate content, or gain unauthorized access, highlighting the need for improved security measures in their software development lifecycle.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-2889 | Link Library <= 7.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Link Additional Parameters — Link LibraryCWE-79 | 6.4 | Medium | 2025-04-04 |
| CVE-2024-13404 | Link Library <= 7.7.2 - Reflected Cross-Site Scripting — Link LibraryCWE-79 | 6.1 | Medium | 2025-01-21 |
| CVE-2024-4281 | Link Library <= 7.6.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via link-library Shortcode — Link LibraryCWE-79 | 6.4 | Medium | 2024-05-08 |
| CVE-2024-2325 | Link Library <= 7.6.6 - Reflected Cross-Site Scripting — Link LibraryCWE-79 | 6.1 | Medium | 2024-04-09 |
| CVE-2024-1559 | Link Library <= 7.6 - Unauthenticated Stored Cross-Site Scripting — Link LibraryCWE-79 | 6.5 | Medium | 2024-02-20 |
This page lists every published CVE security advisory associated with jackdewey. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.