Browse all 3 CVE security advisories affecting svs-websoft. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SVS-Websoft develops web-based software solutions for business process management. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and improper access controls. The company has three CVEs on record, including critical flaws that could allow attackers to execute arbitrary code or bypass authentication. While no major public security incidents have been documented, their consistent vulnerability pattern suggests a need for enhanced security development practices. Organizations using their software should implement strict network segmentation and apply patches promptly to mitigate potential exploitation risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-2960 | SVS Pricing Tables <= 1.0.4 - Cross-Site Request Forgery to Pricing Table Deletion — SVS Pricing TablesCWE-352 | 4.3 | Medium | 2024-05-02 |
| CVE-2024-2959 | SVS Pricing Tables <= 1.0.4 - Cross-Site Request Forgery to Pricing Table Edit/Creation — SVS Pricing TablesCWE-352 | 4.3 | Medium | 2024-05-02 |
| CVE-2024-2958 | SVS Pricing Tables <= 1.0.4 - Authenticated (Admin+) Stored Cross-Site Scripting — SVS Pricing TablesCWE-79 | 4.4 | Medium | 2024-05-02 |
This page lists every published CVE security advisory associated with svs-websoft. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.