Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

smartdatasoft — Vulnerabilities & Security Advisories 11

Browse all 11 CVE security advisories affecting smartdatasoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Smartdatasoft develops data management and analytics software for enterprise clients. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from insufficient input validation and access control issues. The company has recorded 11 CVEs, with several critical vulnerabilities allowing unauthorized system access. While no major public security incidents have been documented, their consistent vulnerability pattern suggests a need for stronger security-by-design practices. Their software's complexity and integration with multiple systems create potential attack surfaces that require continuous security hardening and timely patch management.

Top products by smartdatasoft: Essential WP Real Estate DriCub Resido - Real Estate WordPress Theme Car Repair Services Reveal Listing Electrician - Electrical Service WordPress Pool Services SmartBlog Clasifico Listing
CVE IDTitleCVSSSeverityPublished
CVE-2025-12882 Clasifico Listing <= 2.0 - Unauthenticated Privilege Escalation — Clasifico ListingCWE-269 9.8 Critical2026-02-19
CVE-2020-36972 SmartBlog 2.0.1 - 'id_post' Blind SQL injection — SmartBlogCWE-89 8.2 High2026-01-28
CVE-2026-22358 WordPress Electrician - Electrical Service WordPress theme <= 5.6 - Server Side Request Forgery (SSRF) vulnerability — Electrician - Electrical Service WordPressCWE-918 5.4 Medium2026-01-22
CVE-2025-62741 WordPress Pool Services theme <= 3.3 - Server Side Request Forgery (SSRF) vulnerability — Pool ServicesCWE-918 5.4 Medium2026-01-22
CVE-2025-58004 WordPress DriCub Theme <= 2.9 - Broken Access Control Vulnerability — DriCubCWE-862 5.3 Medium2025-09-22
CVE-2025-58005 WordPress DriCub Theme <= 2.9 - Server Side Request Forgery (SSRF) Vulnerability — DriCubCWE-918 5.4 Medium2025-09-22
CVE-2025-6994 Reveal Listing <= 3.3 - Unauthenticated Privilege Escalation — Reveal ListingCWE-269 9.8 Critical2025-08-06
CVE-2025-30997 WordPress Car Repair Services theme <= 5.0 - Server Side Request Forgery (SSRF) Vulnerability — Car Repair ServicesCWE-918 5.4 Medium2025-06-06
CVE-2025-1285 Resido - Real Estate WordPress Theme <= 3.6 - Missing Authorization to Unauthenticated Server-Side Request Forgery and API Key Settings Update — Resido - Real Estate WordPress ThemeCWE-862 5.3 Medium2025-03-14
CVE-2025-23857 WordPress Essential WP Real Estate Plugin <= 1.1.3 - Reflected Cross Site Scripting (XSS) vulnerability — Essential WP Real EstateCWE-79 7.1 High2025-02-14
CVE-2024-13318 Essential WP Real Estate <= 1.1.3 - Missing Authorization to Arbitrary Post/Page Deletion — Essential WP Real EstateCWE-463 5.3 Medium2025-01-10

This page lists every published CVE security advisory associated with smartdatasoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.