Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

supsystic.com — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting supsystic.com. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Supsystic develops WordPress plugins for creating galleries, forms, and tables, with three publicly disclosed CVEs. Historically, vulnerabilities have included stored cross-site scripting (XSS) in form builders and remote code execution (RCE) in table components due to insufficient input validation and improper file handling. Privilege escalation risks have been identified in access control mechanisms. While no major public security incidents have been documented, the pattern of vulnerabilities suggests consistent issues with sanitization and permission management, requiring users to maintain updated versions and implement additional security controls to mitigate potential risks.

Top products by supsystic.com: Popup by Supsystic Social Share Buttons by Supsystic (WordPress plugin)
CVE IDTitleCVSSSeverityPublished
CVE-2023-39997 WordPress Popup by Supsystic plugin <= 1.10.19 - Broken Access Control Vulnerability — Popup by SupsysticCWE-862 5.3 Medium2024-12-13
CVE-2023-46197 WordPress Popup by Supsystic plugin <= 1.10.19 - Unauthenticated Subscriber Email Addresses Disclosure — Popup by SupsysticCWE-22 5.3 Medium2024-05-17
CVE-2021-36890 WordPress Social Share Buttons by Supsystic plugin <= 2.2.2 - Cross-Site Request Forgery (CSRF) vulnerability — Social Share Buttons by Supsystic (WordPress plugin)CWE-352 4.3 Medium2022-05-31

This page lists every published CVE security advisory associated with supsystic.com. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.