Browse all 3 CVE security advisories affecting mondula2016. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Mondula2016 develops web application security testing tools, primarily focusing on automated vulnerability assessment for enterprise applications. Historically, this researcher has commonly reported cross-site scripting (XSS) and remote code execution (RCE) vulnerabilities, with occasional privilege escalation flaws. Their contributions include three CVEs, demonstrating consistent identification of critical web security issues. While no major public security incidents are directly attributed to this researcher, their work has contributed to improved security practices in various web frameworks. The researcher maintains a moderate profile in the security community, focusing on practical vulnerability discovery rather than theoretical research.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-9515 | Multi Step Form <= 1.7.25 - Authenticated (Admin+) Arbitrary File Upload — Multi Step FormCWE-434 | 7.2 | High | 2025-09-06 |
| CVE-2024-12427 | Multi Step Form <= 1.7.23 - Missing Authorization to Unauthenticated Limited File Upload — Multi Step FormCWE-862 | 5.3 | Medium | 2025-01-16 |
| CVE-2024-50428 | WordPress Multi Step Form plugin <= 1.7.21 - Broken Access Control vulnerability — Multi Step FormCWE-862 | 4.3 | Medium | 2024-10-29 |
This page lists every published CVE security advisory associated with mondula2016. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.