Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

nalam-1 — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting nalam-1. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Nalam-1 is a network monitoring tool primarily used for real-time traffic analysis and security event detection across enterprise environments. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, with six CVEs documented to date. The application's exposure of administrative interfaces and insufficient input validation have been recurring security concerns. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities in its web management console suggests potential for unauthorized system compromise if not properly patched or segmented within network architectures.

Top products by nalam-1: Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) Magical Shop Builder – WooCommerce Template Builder for Elementor | Shop, Cart, Checkout & Product Page Builder Magical Posts Display – Elementor Advanced Posts widgets
CVE IDTitleCVSSSeverityPublished
CVE-2025-12965 Magical Posts Display <= 1.2.54 - Authenticated (Author+) Stored Cross-Site Scripting via Magical Posts Accordion Widget — Magical Posts Display – Elementor Advanced Posts widgetsCWE-79 6.4 Medium2025-12-12
CVE-2025-12964 Magical Products Display <= 1.1.29 - Authenticated (Contributor+) Stored Cross-Site Scripting via MPD Pricing Table Widget — Magical Shop Builder – WooCommerce Template Builder for Elementor | Shop, Cart, Checkout & Product Page BuilderCWE-79 6.4 Medium2025-11-21
CVE-2025-8196 Magical Addons For Elementor <= 1.3.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Attributes — Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library )CWE-79 6.4 Medium2025-07-29
CVE-2024-10352 Magical Addons For Elementor <= 1.2.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template — Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library )CWE-200 4.3 Medium2024-11-09
CVE-2024-5161 Magical Addons For Elementor <= 1.1.39 - Authenticated (Contributor+) Stored Cross-Site Scripting — Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library )CWE-79 6.4 Medium2024-06-06
CVE-2024-2923 Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) <= 1.1.37 - Authenticated (Contributor+) Stored Cross-Site Scripting via Text Effect Widget — Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library )CWE-79 6.4 Medium2024-05-09

This page lists every published CVE security advisory associated with nalam-1. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.