Browse all 4 CVE security advisories affecting mischiefmarmot. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mischiefmarmot focuses on identifying security vulnerabilities in enterprise software and web applications, primarily targeting authentication mechanisms and API endpoints. Historically, this researcher has commonly discovered remote code execution flaws, cross-site scripting vulnerabilities, and privilege escalation issues across various platforms. While no major public incidents are directly attributed to this researcher, their contributions to CVE records demonstrate consistent expertise in uncovering critical flaws that could lead to complete system compromise. The researcher's work typically involves thorough analysis of complex systems, with a particular emphasis on identifying weaknesses that could be chained together to achieve significant security breaches.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-43264 | WordPress Create by Mediavine plugin <= 1.9.8 - Sensitive Data Exposure vulnerability — Create by MediavineCWE-201 | 5.3 | Medium | 2024-08-26 |
| CVE-2024-37495 | WordPress Create by Mediavine plugin <= 1.9.7 - Cross Site Scripting (XSS) vulnerability — Create by MediavineCWE-79 | 6.5 | Medium | 2024-07-21 |
| CVE-2024-5601 | Create by Mediavine <= 1.9.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Schema Meta Shortcode — CreateCWE-79 | 6.4 | Medium | 2024-06-27 |
| CVE-2024-1711 | Create by Mediavine <= 1.9.4 - Unauthenticated SQL Injection via 'id' — CreateCWE-89 | 9.8 | Critical | 2024-03-20 |
This page lists every published CVE security advisory associated with mischiefmarmot. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.