Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

techjewel — Vulnerabilities & Security Advisories 38

Browse all 38 CVE security advisories affecting techjewel. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Techjewel operates primarily as a provider of digital asset management and blockchain infrastructure solutions, facilitating secure transactions and data integrity for enterprise clients. Historically, its software stack has exhibited vulnerabilities typical of complex web applications, with a notable prevalence of Cross-Site Scripting (XSS) and SQL Injection flaws that allow unauthorized data access. Additionally, several instances of Remote Code Execution (RCE) and improper access control mechanisms have been documented, highlighting gaps in input validation and authentication protocols. While no single catastrophic breach has been publicly attributed to the brand, the accumulation of 38 Common Vulnerabilities and Exposures (CVEs) indicates persistent security hygiene issues. These findings suggest that while the core business model is robust, the underlying technical implementation requires rigorous patching and continuous security auditing to mitigate risks associated with privilege escalation and data exfiltration.

Top products by techjewel: Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form Builder Ninja Tables – Easy Data Table Builder Fluent Forms Pro Add On Pack FluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM Solution FluentSMTP – WP SMTP Plugin with Amazon SES, SendGrid, MailGun, Postmark, Google and Any SMTP Provider Fluent Booking – The Ultimate Appointments Scheduling, Events Booking, Events Calendar Solution Fluent Support – Helpdesk & Customer Support Ticket System FluentAuth – The Ultimate Authorization & Security Plugin for WordPress
CVE IDTitleCVSSSeverityPublished
CVE-2024-4709 Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.16 - Authenticated (Contributor+) Stored Cross-Site Scripting — Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form BuilderCWE-79 6.4 Medium2024-05-18
CVE-2024-2772 Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.13 - Authenticated (Subscriber+) Stored Cross-Site Scripting — Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form BuilderCWE-79 6.4 Medium2024-05-18
CVE-2024-2782 Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.16 - Missing Authorization to Setting Manipulation — Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form BuilderCWE-862 7.5 High2024-05-18
CVE-2024-2771 Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder <= 5.1.16 - Missing Authorization to Settings Update and Limited Privilege Escalation — Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form BuilderCWE-862 9.8 Critical2024-05-18
CVE-2023-6957 Fluent Forms <= 5.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting — Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form BuilderCWE-79 4.9 Medium2024-03-13
CVE-2024-0618 Fluent Forms <= 5.1.5 - Authenticated(Administrator+) Stored Cross-Site Scripting via imported form title — Fluent Forms – Customizable Contact Forms, Survey, Quiz, & Conversational Form BuilderCWE-79 4.4 Medium2024-01-27
CVE-2023-3087 FluentSMTP <= 2.2.4 - Unauthenticated Stored Cross-Site Scripting via Email Subject — FluentSMTP – WP SMTP Plugin with Amazon SES, SendGrid, MailGun, Postmark, Google and Any SMTP ProviderCWE-79 7.2 High2023-07-12
CVE-2023-1430 FluentCRM - Marketing Automation For WordPress <= 2.8.01 - Insufficient Use of Hash as Authorization Control — FluentCRM – Email Newsletter, Automation, Email Marketing, Email Campaigns, Optins, Leads, and CRM SolutionCWE-759 6.5 Medium2023-06-09

This page lists every published CVE security advisory associated with techjewel. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.