Browse all 3 CVE security advisories affecting neeraj_slit. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Neeraj_slit focuses on web application security research, primarily identifying vulnerabilities in open-source and commercial software. Their CVE history reveals a pattern of discovering critical remote code execution and cross-site scripting flaws, often in authentication mechanisms and user input processing. While no major public incidents are directly attributed to this researcher, their contributions to vulnerability databases demonstrate consistent expertise in uncovering privilege escalation and server-side injection weaknesses. Their work typically involves detailed proof-of-concept development and responsible disclosure practices, contributing to improved security postures across multiple software vendors.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-14799 | Brevo - Email, SMS, Web Push, Chat, and more. <= 3.3.0 - Unauthenticated Authorization Bypass via Type Juggling — Brevo – Email, SMS, Web Push, Chat, and more.CWE-843 | 6.5 | Medium | 2026-02-18 |
| CVE-2025-14436 | Brevo for WooCommerce <= 4.0.49 - Unauthenticated Stored Cross-Site Scripting — Brevo for WooCommerceCWE-79 | 7.2 | High | 2026-01-08 |
| CVE-2024-8477 | Newsletter, SMTP, Email marketing and Subscribe forms by Brevo (formely Sendinblue) <= 3.1.87 - Cross-Site Request Forgery — Brevo – Email, SMS, Web Push, Chat, and more.CWE-352 | 4.3 | Medium | 2024-10-10 |
This page lists every published CVE security advisory associated with neeraj_slit. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.