Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

shabti — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting shabti. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Shabti is a penetration testing tool designed for AWS environment exploitation, primarily used by security professionals to assess cloud infrastructure vulnerabilities. Historically, it has been associated with multiple critical vulnerabilities including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. The tool has accumulated 9 CVEs to date, reflecting its potential for significant security breaches. Shabti's ability to exploit misconfigurations and weaknesses in AWS services has made it notable in security circles, though no major public incidents have been directly attributed to its use. Its continued evolution underscores the ongoing challenges in securing cloud environments against specialized testing tools.

Top products by shabti: Frontend Admin by DynamiApps
CVE IDTitleCVSSSeverityPublished
CVE-2026-3328 Frontend Admin by DynamiApps <= 3.28.31 - Authenticated (Editor+) PHP Object Injection via 'post_content' of Admin Form Posts — Frontend Admin by DynamiAppsCWE-502 7.2 High2026-03-26
CVE-2025-14741 Frontend Admin by DynamiApps <= 3.28.25 - Missing Authorization to Unauthenticated Arbitrary Data Deletion via 'delete post' Form Element — Frontend Admin by DynamiAppsCWE-862 9.1 Critical2026-01-09
CVE-2025-14937 Frontend Admin by DynamiApps <= 3.28.23 - Unauthenticated Stored Cross-Site Scripting via 'update_field' — Frontend Admin by DynamiAppsCWE-79 7.2 High2026-01-09
CVE-2025-14736 Frontend Admin by DynamiApps <= 3.28.29 - Unauthenticated Privilege Escalation to Administrator via Role Form Field — Frontend Admin by DynamiAppsCWE-269 9.8 Critical2026-01-09
CVE-2025-13342 Frontend Admin by DynamiApps <= 3.28.20 - Unauthenticated Arbitrary Options Update — Frontend Admin by DynamiAppsCWE-862 9.8 Critical2025-12-03
CVE-2024-11722 Frontend Admin by DynamiApps <= 3.25.1 - Unauthenticated SQL Injection — Frontend Admin by DynamiAppsCWE-89 5.9 Medium2024-12-21
CVE-2024-11721 Frontend Admin by DynamiApps <= 3.24.5 - Unauthenticated Privilege Escalation — Frontend Admin by DynamiAppsCWE-269 8.1 High2024-12-14
CVE-2024-11720 Frontend Admin by DynamiApps <= 3.24.5 - Unauthenticated Stored Cross-Site Scripting — Frontend Admin by DynamiAppsCWE-79 7.2 High2024-12-14
CVE-2024-3729 Frontend Admin by DynamiApps <= 3.19.4 - Improper Missing Encryption Exception Handling to Form Manipulation — Frontend Admin by DynamiAppsCWE-636 9.8 Critical2024-05-02

This page lists every published CVE security advisory associated with shabti. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.