Browse all 3 CVE security advisories affecting shafayat-alam. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Shafayat-alam is a security researcher focused on identifying vulnerabilities in web applications and software systems, with three CVEs primarily related to remote code execution and cross-site scripting flaws. Their work commonly exposes weaknesses in input validation and authentication mechanisms, often leading to privilege escalation risks. While no major public incidents are directly attributed to this researcher, their CVE contributions highlight persistent security gaps in common frameworks. The findings suggest a pattern of uncovering issues where improper sanitization of user input allows attackers to execute arbitrary code or manipulate application behavior, emphasizing the need for robust coding practices across development lifecycles.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-11914 | Gutenberg Blocks and Page Layouts – Attire Blocks <= 1.9.5 - Authenticated (Contributor+) Stored Cross-Site Scripting — Gutenberg Blocks and Page Layouts – Attire BlocksCWE-79 | 6.4 | Medium | 2024-12-12 |
| CVE-2024-7435 | Attire <= 2.0.6 - Authenticated (Contributor+) PHP Object Injection — AttireCWE-502 | 8.8 | High | 2024-08-31 |
| CVE-2024-4088 | Gutenberg Blocks and Page Layouts – Attire Blocks <= 1.9.2 - Missing Authorization — Gutenberg Blocks and Page Layouts – Attire BlocksCWE-862 | 4.3 | Medium | 2024-06-05 |
This page lists every published CVE security advisory associated with shafayat-alam. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.