Browse all 4 CVE security advisories affecting kitabisa. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kitabisa operates as a crowdfunding platform enabling users to create and donate to charitable causes. Historically, the platform has been susceptible to various vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation, as evidenced by its four recorded CVEs. These vulnerabilities have potentially allowed unauthorized access, data manipulation, and execution of arbitrary code. While no major public security incidents have been widely reported, the presence of multiple CVEs indicates ongoing security challenges typical of web applications handling sensitive financial and personal data.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-23466 | DOM-based cross-site scripting (XSS) in teler dashboard — telerCWE-79 | 5.4 | Medium | 2022-12-06 |
| CVE-2020-26213 | Denial of Service in teler — telerCWE-476 | 5.9 | Medium | 2020-11-06 |
This page lists every published CVE security advisory associated with kitabisa. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.