Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

specialk — Vulnerabilities & Security Advisories 19

Browse all 19 CVE security advisories affecting specialk. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SpecialK is a game modification framework primarily used for enhancing gameplay through custom configurations and memory manipulation. Historically, it has been associated with multiple critical vulnerabilities including remote code execution, privilege escalation, and memory corruption flaws, contributing to its 19 CVE count. The framework's deep system integration and extensive hooking capabilities have made it a target for security researchers, with several incidents involving unauthorized code execution and bypass of anti-cheat systems. Its kernel-level functionality and extensive API access have consistently created attack surfaces that compromise system integrity, particularly when combined with other exploitation techniques.

Found 7 results / 19Clear Filters
Top products by specialk: User Submitted Posts – Enable Users to Submit Posts from the Front End Simple Download Counter Simple Ajax Chat – Add a Fast, Secure Chat Box Theme Switcha – Easily Switch Themes for Development and Testing Dashboard Widgets Suite Banhammer – Monitor Site Traffic, Block Bad Users and Bots Head Meta Data Blackhole for Bad Bots Prismatic
CVE IDTitleCVSSSeverityPublished
CVE-2026-2126 User Submitted Posts <= 20260113 - Incorrect Authorization to Unauthenticated Category Restriction Bypass via 'user-submitted-category' Parameter — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-863 5.3 Medium2026-02-18
CVE-2026-0800 User Submitted Posts – Enable Users to Submit Posts from the Front End <= 20251210 - Unauthenticated Stored Cross-Site Scripting via Custom Field — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-79 7.2 High2026-01-24
CVE-2026-0913 User Submitted Posts <= 20260110 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'usp_access' Shortcode — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-79 6.4 Medium2026-01-16
CVE-2025-2874 User Submitted Posts <= 20241026 - Authenticated (Admin+) Stored Cross-Site Scripting — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-79 4.4 Medium2025-04-03
CVE-2023-4779 User Submitted Posts – Enable Users to Submit Posts from the Front End <= 20230811 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-79 6.4 Medium2023-09-06
CVE-2023-4308 User Submitted Posts <= 20230809 - Unauthenticated Stored Cross-Site Scripting via 'user-submitted-content' — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-79 7.2 High2023-08-15
CVE-2019-25138 User Submitted Posts <= 20190312 - Unauthenticated Arbitrary File Upload — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-434 9.8 Critical2023-06-07

This page lists every published CVE security advisory associated with specialk. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.