Browse all 3 CVE security advisories affecting photoboxone. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Photoboxone operates as a digital photo printing service, allowing users to create personalized photo products online. Historically, the platform has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been widely documented, the three recorded CVEs indicate persistent security challenges in web application security. The platform's handling of user-generated content and payment processing presents inherent risks that require continuous security hardening to prevent potential data breaches or service disruptions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-62762 | WordPress SMTP Mail plugin <= 1.3.51 - Cross Site Request Forgery (CSRF) vulnerability — SMTP MailCWE-352 | 4.3 | Medium | 2025-12-09 |
| CVE-2024-25914 | WordPress SMTP Mail Plugin <= 1.3.20 is vulnerable to Cross Site Request Forgery (CSRF) — SMTP MailCWE-352 | 4.3 | Medium | 2024-02-13 |
| CVE-2023-3092 | SMTP Mail <= 1.3.46 - Unauthenticated Stored Cross-Site Scripting via Email Subject — SMTP MailCWE-79 | 7.2 | High | 2023-07-12 |
This page lists every published CVE security advisory associated with photoboxone. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.