Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

opajaap — Vulnerabilities & Security Advisories 5

Browse all 5 CVE security advisories affecting opajaap. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Opajaap primarily develops web applications and APIs for various industries, with a core focus on custom enterprise solutions. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and misconfigured access controls. While no major public security incidents have been documented, their CVE history reveals consistent patterns of authentication bypass flaws and insecure direct object references. The organization has shown gradual improvement in security practices over time, though legacy components remain potential attack vectors. Their codebase typically demonstrates moderate security hygiene with occasional lapses in session management and parameter sanitization.

Top products by opajaap: WP Photo Album Plus
CVE IDTitleCVSSSeverityPublished
CVE-2025-14835 WP Photo Album Plus <= 9.1.05.008 - Reflected Cross-Site Scripting — WP Photo Album PlusCWE-80 7.1 High2026-01-07
CVE-2025-8726 WP Photo Album Plus <= 9.0.11.006 - Authenticated (Subscriber+) Stored Cross-Site Scripting via wppa_user_upload — WP Photo Album PlusCWE-79 5.4 Medium2025-10-04
CVE-2024-10958 WP Photo Album Plus <= 8.8.08.007 - Unauthenticated Arbitrary Shortcode Execution via getshortcodedrenderedfenodelay — WP Photo Album PlusCWE-94 7.3 High2024-11-10
CVE-2024-9951 Wordpress Photo Album Plus <= 8.8.05.003 - Reflected Cross-Site Scripting — WP Photo Album PlusCWE-79 6.1 Medium2024-10-17
CVE-2024-4037 WP Photo Album Plus <= 8.7.02.003 - Unauthenticated Arbitrary Shortcode Execution — WP Photo Album PlusCWE-94 6.5 Medium2024-05-24

This page lists every published CVE security advisory associated with opajaap. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.