Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

supsysticcom — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting supsysticcom. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Supsysticcom develops WordPress plugins for creating galleries, sliders, and tables, with its products primarily used for enhancing website functionality. Historically, their plugins have been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls. The company has addressed several critical flaws over time, with seven CVEs documented in their history. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities in their products suggests a need for more rigorous security testing and input sanitization practices in their development lifecycle.

Top products by supsysticcom: Contact Form by Supsystic Easy Google Maps WordPress Flipbook by Supsystic Data Tables Generator by Supsystic
CVE IDTitleCVSSSeverityPublished
CVE-2026-4257 Contact Form by Supsystic <= 1.7.36 - Unauthenticated Server-Side Template Injection via Prefill Functionality — Contact Form by SupsysticCWE-94 9.8 Critical2026-03-30
CVE-2025-12089 Data Tables Generator by Supsystic <= 1.10.45 - Authenticated (Admin+) Arbitrary File Deletion — Data Tables Generator by SupsysticCWE-22 6.5 Medium2025-11-13
CVE-2024-13452 Contact Form by Supsystic <= 1.7.29 - Cross-Site Request Forgery to Stored Cross-Site Scripting via saveAsCopy AJAX Action — Contact Form by SupsysticCWE-79 6.1 Medium2025-04-16
CVE-2024-5219 Easy Google Maps <= 1.11.15 - Authenticated (Author+) Stored Cross-Site Scripting — Easy Google MapsCWE-79 6.4 Medium2024-07-02
CVE-2023-5756 Digital Publications by Supsystic <= 1.7.6 - Cross-Site Request Forgery via AJAX action — WordPress Flipbook by SupsysticCWE-352 5.4 Medium2023-12-09
CVE-2023-2526 Easy Google Maps <= 1.11.7 - Cross-Site Request Forgery via AJAX action — Easy Google MapsCWE-352 5.4 Medium2023-06-09
CVE-2023-2528 Contact Form by Supsystic <= 1.7.24 - Cross-Site Request Forgery via AJAX action — Contact Form by SupsysticCWE-352 5.4 Medium2023-05-16

This page lists every published CVE security advisory associated with supsysticcom. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.