Browse all 10 CVE security advisories affecting sparklemotion. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Sparklemotion develops interactive web applications with a focus on user engagement platforms. Historically, the organization has been associated with vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, often stemming from insufficient input validation and misconfigured access controls. Notable security characteristics include inconsistent patch management and inadequate dependency vetting, leading to multiple high-severity flaws. While no major public incidents have been documented, the accumulation of 10 CVEs suggests systemic security challenges in their development lifecycle. Their products remain attractive targets due to widespread deployment in customer-facing environments, necessitating improved security practices to mitigate persistent risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-6494 | sparklemotion nokogiri hashmap.c hashmap_get_with_hash heap-based overflow — nokogiriCWE-122 | 3.3 | Low | 2025-06-22 |
| CVE-2025-6490 | sparklemotion nokogiri hashmap.c hashmap_set_with_hash heap-based overflow — nokogiriCWE-122 | 3.3 | Low | 2025-06-22 |
| CVE-2022-23476 | Unchecked return value from xmlTextReaderExpand in Nokogiri — nokogiriCWE-252 | 7.5 | High | 2022-12-08 |
| CVE-2022-29181 | Improper Handling of Unexpected Data Type in Nokogiri — nokogiriCWE-241 | 8.2 | High | 2022-05-20 |
| CVE-2022-24836 | Inefficient Regular Expression Complexity in Nokogiri — nokogiriCWE-400 | 7.5 | High | 2022-04-11 |
| CVE-2021-41098 | Improper Restriction of XML External Entity Reference (XXE) in Nokogiri on JRuby — nokogiriCWE-611 | 7.5 | - | 2021-09-27 |
| CVE-2020-26247 | XXE in Nokogiri — nokogiriCWE-611 | 2.6 | Low | 2020-12-30 |
This page lists every published CVE security advisory associated with sparklemotion. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.