Browse all 5 CVE security advisories affecting stmcan. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Stmcan operates in the cybersecurity domain, focusing on vulnerability research and security analysis. Historically, stmcan's reported vulnerabilities have commonly included remote code execution (RCE) and cross-site scripting (XSS) flaws, with occasional privilege escalation issues. The security researcher maintains a moderate CVE count of five, primarily affecting web applications and embedded systems. No major public security incidents have been directly attributed to stmcan's work, though their research has contributed to improved security practices in affected systems. The researcher's findings typically highlight common misconfigurations and input validation weaknesses in software development.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25018 | WordPress NaturaLife Extensions plugin <= 2.1 - Reflected Cross Site Scripting (XSS) vulnerability — NaturaLife ExtensionsCWE-79 | 7.1 | High | 2026-03-25 |
| CVE-2026-25017 | WordPress NaturaLife Extensions plugin <= 2.1 - Local File Inclusion vulnerability — NaturaLife ExtensionsCWE-98 | 8.1 | High | 2026-03-25 |
This page lists every published CVE security advisory associated with stmcan. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.