Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

softdiscover — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting softdiscover. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Softdiscover primarily provides software discovery and asset management solutions for organizations. Historically, its products have been vulnerable to multiple remote code execution flaws, cross-site scripting vulnerabilities, and privilege escalation issues, accounting for all seven recorded CVEs. These weaknesses often stem from improper input validation and insecure default configurations. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests potential risks for enterprises relying on their tools for critical infrastructure management. Organizations should implement strict network segmentation and apply patches promptly when available.

Top products by softdiscover: Zigaform – Price Calculator & Cost Estimation Form Builder Lite File Manager, Code Editor, and Backup by Managefy Zigaform – Form Builder Lite Zigaform
CVE IDTitleCVSSSeverityPublished
CVE-2025-13696 Zigaform <= 7.6.5 - Unauthenticated Form Submission Data Disclosure in rocket_front_payment_seesummary AJAX Endpoint — Zigaform – Price Calculator & Cost Estimation Form Builder LiteCWE-200 5.3 Medium2025-12-02
CVE-2025-10744 File Manager, Code editor, backup by Managefy <= 1.6.1 - Unauthenticated Information Exposure — File Manager, Code Editor, and Backup by ManagefyCWE-200 5.9 Medium2025-10-01
CVE-2025-9345 File Manager, Code Editor, and Backup by Managefy <= 1.4.8 - Authenticated (Admin+) Path Traversal to Arbitrary File Download — File Manager, Code Editor, and Backup by ManagefyCWE-22 4.9 Medium2025-08-28
CVE-2025-26994 WordPress Zigaform – Price Calculator & Cost Estimation Form Builder Lite plugin <= 7.4.2 - Cross Site Scripting (XSS) vulnerability — Zigaform – Price Calculator & Cost Estimation Form Builder LiteCWE-79 7.1 High2025-03-03
CVE-2025-26989 WordPress Zigaform – Form Builder Lite plugin <= 7.4.2 - Cross Site Scripting (XSS) vulnerability — ZigaformCWE-79 7.1 High2025-03-03
CVE-2024-13573 Zigaform – Form Builder Lite <= 7.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting — Zigaform – Form Builder LiteCWE-79 6.4 Medium2025-02-18
CVE-2024-13587 Zigaform – Price Calculator & Cost Estimation Form Builder Lite <= 7.4.7 - Authenticated (Contributor+) Stored Cross-Site Scripting — Zigaform – Price Calculator & Cost Estimation Form Builder LiteCWE-79 6.4 Medium2025-02-18

This page lists every published CVE security advisory associated with softdiscover. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.