Browse all 7 CVE security advisories affecting yogeshojha. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Yogeshojha develops web applications and APIs primarily for enterprise solutions, with a core focus on custom software development. Historically, vulnerabilities associated with this researcher include Remote Code Execution (RCE), Cross-Site Scripting (XSS), and privilege escalation flaws, often found in popular open-source platforms. Security characteristics reveal a pattern of identifying critical flaws in widely-used systems, with seven CVEs documenting these findings. While no major public incidents are directly linked to this researcher, their contributions highlight persistent security challenges in web application development, particularly in input validation and access control mechanisms.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-24968 | Business Logic And Unrestricted Project Deletion Lead To Take Over the System in reNgine — rengineCWE-284 | 8.8 | High | 2025-02-04 |
| CVE-2025-24967 | Stored XSS on Admin Panel When Deleting a User in reNgine — rengineCWE-79 | 5.4 | - | 2025-02-04 |
| CVE-2025-24966 | HTML Injection in reNgine — rengineCWE-79 | 5.4 | - | 2025-02-04 |
| CVE-2025-24899 | Disclosure of Sensitive User Information via API in reNgine — rengineCWE-200 | 6.5 | - | 2025-02-03 |
| CVE-2025-24962 | Command Injection in reNgine — rengineCWE-74 | 8.8 | - | 2025-02-03 |
| CVE-2024-43381 | reNgine vulnerable to Stored Cross-Site Scripting (XSS) via DNS Record Poisoning — rengineCWE-79 | 5.0 | Medium | 2024-08-16 |
| CVE-2022-1813 | OS Command Injection in yogeshojha/rengine — yogeshojha/rengineCWE-78 | 9.8 | - | 2022-05-22 |
This page lists every published CVE security advisory associated with yogeshojha. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.