Browse all 4 CVE security advisories affecting kostasmitroglou. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kostasmitroglou is a security researcher focused on identifying vulnerabilities in web applications and enterprise systems, with a core use case in penetration testing and security auditing. Historically, their research has primarily exposed Remote Code Execution (RCE) and Cross-Site Scripting (XSS) vulnerabilities, with occasional findings related to privilege escalation flaws. Their contributions to CVE records demonstrate a consistent pattern of uncovering critical flaws in widely-used software. While no major public incidents are directly attributed to their work, their CVE contributions have prompted security updates in multiple products, highlighting their impact on improving software security postures through responsible disclosure practices.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-25441 | thesystem 1.0 Command Injection via run_command endpoint — thesystemCWE-78 | 9.8 | Critical | 2026-02-20 |
| CVE-2019-25347 | thesystem App 1.0 - 'username' SQL Injection — thesystemCWE-89 | 7.5 | High | 2026-02-12 |
| CVE-2019-25346 | thesystem 1.0 - 'server_name' SQL Injection — thesystemCWE-89 | 7.5 | High | 2026-02-12 |
| CVE-2019-25311 | thesystem Persistent XSS — thesystemCWE-79 | 6.4 | Medium | 2026-02-11 |
This page lists every published CVE security advisory associated with kostasmitroglou. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.