Browse all 4 CVE security advisories affecting rainbowgeek. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Rainbowgeek operates in cybersecurity research, focusing on identifying vulnerabilities in web applications and enterprise systems. Historically, they have primarily reported remote code execution (RCE) and cross-site scripting (XSS) vulnerabilities, with occasional findings related to privilege escalation. Their contributions include four CVEs, demonstrating consistent engagement with security disclosure processes. While no major public incidents are directly attributed to rainbowgeek, their work highlights common security flaws in software development. Their profile suggests a researcher who prioritizes practical vulnerability discovery over theoretical exploits, contributing to improved security postures across affected systems.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-9225 | SEOPress – On-site SEO <= 8.1.1 - Reflected Cross-Site Scripting — SEOPress – On-site SEO & AnalyticsCWE-79 | 6.1 | Medium | 2024-10-02 |
| CVE-2024-1168 | SEOPress – On-site SEO <= 7.9 - Authenticated(Contributor+) Stored Cross-Site Scripting via Social Image URL — SEOPress – On-site SEO & AnalyticsCWE-79 | 6.4 | Medium | 2024-06-20 |
| CVE-2024-1134 | SEOPress – On-site SEO <= 7.5.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting — SEOPress – On-site SEO & AnalyticsCWE-79 | 6.4 | Medium | 2024-05-24 |
| CVE-2024-2165 | SEOPress – On-site SEO <= 7.5.2.1 - Authenticated (Author+) Stored Cross-Site Scripting — SEOPress – On-site SEO & AnalyticsCWE-20 | 6.4 | Medium | 2024-04-09 |
This page lists every published CVE security advisory associated with rainbowgeek. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.