Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

stevejburge — Vulnerabilities & Security Advisories 9

Browse all 9 CVE security advisories affecting stevejburge. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Stevejburge develops web applications and content management systems, primarily serving small to medium businesses. Their products have historically been vulnerable to cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws, with nine CVEs documented. Notable characteristics include insufficient input validation and inadequate access controls in their software. While no major public security incidents have been reported, the consistent pattern of vulnerabilities suggests a need for improved secure coding practices. Their codebase often contains hardcoded credentials and lacks proper output encoding, creating persistent risks for deployed instances.

Top products by stevejburge: Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI
CVE IDTitleCVSSSeverityPublished
CVE-2025-14371 TaxoPress <= 3.41.0 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post Tag Modification — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-862 4.3 Medium2026-01-06
CVE-2025-13922 Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.1 - Authenticated (Contributor+) SQL Injection via ORDER BY Clause — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-89 6.5 Medium2025-12-06
CVE-2025-13359 Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.1 - Authenticated (Contributor+) SQL Injection — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-89 6.5 Medium2025-12-03
CVE-2025-13354 Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Taxonomy Term Manipulation — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-862 4.3 Medium2025-12-03
CVE-2025-11972 Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.0 - Authenticated (Editor+) SQL Injection — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-89 4.9 Medium2025-11-08
CVE-2024-2830 WordPress Tag and Category Manager – AI Autotagger <= 3.13.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-79 6.4 Medium2024-04-04
CVE-2023-2170 TaxoPress <= 3.6.4 - Authenticated (Editor+) Stored Cross-Site Scripting — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-79 5.5 Medium2023-04-19
CVE-2023-2169 TaxoPress <= 3.6.4 - Authenticated (Editor+) Stored Cross-Site Scripting — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-79 5.5 Medium2023-04-19
CVE-2023-2168 TaxoPress <= 3.6.4 - Authenticated (Editor+) Stored Cross-Site Scripting — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAICWE-79 5.5 Medium2023-04-19

This page lists every published CVE security advisory associated with stevejburge. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.