Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

roxnor — Vulnerabilities & Security Advisories 76

Browse all 76 CVE security advisories affecting roxnor. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Roxnor operates as a specialized provider of network security solutions, primarily focusing on intrusion detection and prevention systems designed to monitor and secure enterprise network traffic. Historical security audits have identified a significant volume of vulnerabilities within its software infrastructure, with 76 Common Vulnerabilities and Exposures currently on record. These flaws predominantly involve remote code execution and cross-site scripting, allowing attackers to potentially bypass authentication mechanisms or execute arbitrary commands on affected devices. Privilege escalation vulnerabilities have also been documented, enabling lower-privileged users to gain administrative control. While specific major public incidents remain largely contained within technical disclosure reports, the high count of disclosed CVEs indicates persistent challenges in the product’s secure development lifecycle. Organizations utilizing Roxnor appliances are advised to apply vendor patches promptly to mitigate risks associated with these known exploitation vectors and ensure continuous network integrity.

Top products by roxnor: MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers Wp Social Login and Register Social Counter EmailKit – Email Customizer for WooCommerce & WP Metform Wp Ultimate Review ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution GetGenie – AI Content Writer with Keyword Research & SEO Tracking Tools ElementsKit Elementor addons Lite FundEngine PopupKit FundEngine – Donation and Crowdfunding Platform EmailKit GetGenie
CVE IDTitleCVSSSeverityPublished
CVE-2023-0689 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via 'mf_first_name' shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-639 4.3 Medium2023-08-31
CVE-2023-2517 Metform Elementor Contact Form Builder <= 3.3.2 - Cross-Site Request Forgery via permalink_setup — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-352 5.4 Medium2023-07-12
CVE-2023-0692 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via 'mf_payment_status' shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-639 4.3 Medium2023-06-09
CVE-2023-0721 Metform Elementor Contact Form Builder <= 3.3.0 - Unauthenticated CSV Injection — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-1236 8.3 High2023-06-09
CVE-2023-0708 Metform Elementor Contact Form Builder <= 3.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mf_first_name shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-79 5.4 Medium2023-06-09
CVE-2023-0691 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via mf_last_name shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-639 4.3 Medium2023-06-09
CVE-2023-0710 Metform Elementor Contact Form Builder <= 3.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mf_thankyou shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-79 4.9 Medium2023-06-09
CVE-2023-0688 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via mf_thankyou shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-639 6.5 Medium2023-06-09
CVE-2023-1843 Metform Elementor Contact Form Builder <= 3.3.0 - Missing Authorization — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-862 6.5 Medium2023-06-09
CVE-2023-0709 Metform Elementor Contact Form Builder <= 3.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mf_last_name shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-79 5.4 Medium2023-06-09
CVE-2023-0693 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via 'mf_transaction_id' shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-639 6.5 Medium2023-06-09
CVE-2023-0695 Metform Elementor Contact Form Builder <= 3.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mf shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-79 5.4 Medium2023-06-09
CVE-2023-0694 Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via mf shortcode — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-639 6.5 Medium2023-06-09
CVE-2023-0084 Metform Elementor Contact Form Builder <= 3.1.2 - Unauthenticated Stored Cross-Site Scripting — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-79 7.2 High2023-03-02
CVE-2023-0085 Metform Elementor Contact Form Builder <= 3.2.1 - reCaptcha Protection Bypass — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-693 5.3 Medium2023-03-02
CVE-2022-1442 Metform Elementor Contact Form Builder <= 2.1.3 - Sensitive Information Disclosure — MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for ElementorCWE-862 7.5 High2022-05-10

This page lists every published CVE security advisory associated with roxnor. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.