Browse all 5 CVE security advisories affecting urkekg. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Urkekg is a software component primarily used for data processing and workflow automation in enterprise environments. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and insecure default configurations. The component's complex architecture and extensive API surface have contributed to security challenges, with five CVEs documented to date. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities suggests a need for rigorous security hardening and regular updates in production deployments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-2722 | Stock Ticker <= 3.26.1 - Authenticated (Administrator+) Stored Cross-Site Scripting via Template — Stock TickerCWE-79 | 4.8 | Medium | 2026-03-07 |
| CVE-2025-4169 | Posts per Cat [Unmaintained] <= 1.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting — Posts per CatCWE-79 | 6.4 | Medium | 2025-05-16 |
| CVE-2024-6363 | Stock Ticker <= 3.24.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via stock_ticker Shortcode — Stock TickerCWE-79 | 6.4 | Medium | 2024-06-29 |
| CVE-2023-0447 | My YouTube Channel <= 3.0.12.1 - Missing Authorization — My YouTube ChannelCWE-862 | 4.3 | Medium | 2023-01-23 |
| CVE-2023-0446 | My YouTube Channel <= 3.0.12.1 - Authenticated (Administrator+) Stored Cross-Site Scripting — My YouTube ChannelCWE-79 | 5.5 | Medium | 2023-01-23 |
This page lists every published CVE security advisory associated with urkekg. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.