Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

solwin — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting solwin. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Solwin develops e-commerce and web development solutions, primarily serving businesses requiring custom digital platforms. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been widely documented, the six CVEs attributed to their software highlight recurring issues in sanitizing user inputs and managing authentication mechanisms. These vulnerabilities could allow attackers to execute arbitrary code, manipulate web content, or gain elevated access, underscoring the need for rigorous input handling and secure coding practices in their development lifecycle.

Top products by solwin: Blog Designer PRO User Activity Log Pro
CVE IDTitleCVSSSeverityPublished
CVE-2025-58711 WordPress Blog Designer PRO plugin <= 3.4.8 - Broken Access Control vulnerability — Blog Designer PROCWE-862 5.3 Medium2025-10-29
CVE-2025-47694 WordPress Blog Designer PRO plugin <= 3.4.7 - Reflected Cross Site Scripting (XSS) vulnerability — Blog Designer PROCWE-79 7.1 High2025-09-09
CVE-2025-47695 WordPress Blog Designer PRO plugin <= 3.4.7 - Authenticated Non-Arbitrary Local File Inclusion vulnerability — Blog Designer PROCWE-98 7.5 High2025-09-09
CVE-2025-47696 WordPress Blog Designer PRO plugin <= 3.4.7 - Unauthenticated Non-Arbitrary Local File Inclusion vulnerability — Blog Designer PROCWE-98 8.1 High2025-08-31
CVE-2024-37929 WordPress User Activity Log Pro plugin <= 2.3.4 - Subscriber+ Multiple Broken Access Control vulnerability — User Activity Log ProCWE-862 6.3 Medium2024-11-01
CVE-2024-32137 WordPress User Activity Log Pro plugin <= 2.3.4 - Auth. SQL Injection vulnerability — User Activity Log ProCWE-89 8.5 High2024-04-15

This page lists every published CVE security advisory associated with solwin. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.