Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

JetEngine — Vulnerabilities & Security Advisories 17

All 17 CVE vulnerabilities found in JetEngine, with AI-generated Chinese analysis, references, and POCs.

Vendor: Unknown

CVE IDTitleCVSSSeverityPaused
CVE-2026-4352 JetEngine <= 3.8.6.1 - Unauthenticated SQL Injection via '_cct_search' Parameter CWE-89 7.5 High2026-04-14
CVE-2026-4662 JetEngine <= 3.8.6.1 - Unauthenticated SQL Injection via Listing Grid 'filtered_query' Parameter CWE-89 7.5 High2026-03-24
CVE-2026-32355 WordPress JetEngine plugin < 3.8.4.1 - Deserialization of untrusted data vulnerability CWE-502 9.8 -2026-03-13
CVE-2026-28134 WordPress JetEngine plugin <= 3.7.2 - Remote Code Execution (RCE) vulnerability CWE-94 9.8 -2026-03-05
CVE-2025-68495 WordPress JetEngine plugin <= 3.8.0 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 6.1AIMediumAI2026-02-20
CVE-2025-67923 WordPress JetEngine plugin <= 3.7.7 - Cross Site Scripting (XSS) vulnerability CWE-79 6.1AIMediumAI2026-01-22
CVE-2025-69333 WordPress JetEngine plugin <= 3.8.1.1 - Broken Access Control vulnerability CWE-862 4.3 Medium2026-01-07
CVE-2025-49938 WordPress JetEngine plugin <= 3.7.3 - Cross Site Scripting (XSS) vulnerability CWE-79 5.4AIMediumAI2025-10-22
CVE-2025-53194 WordPress JetEngine <= 3.7.0 - Remote Code Execution (RCE) Vulnerability CWE-82 8.5 High2025-08-20
CVE-2025-53195 WordPress JetEngine plugin <= 3.7.0 - Cross Site Scripting (XSS) Vulnerability CWE-79 6.5 Medium2025-08-20
CVE-2025-53196 WordPress JetEngine <= 3.7.0 - Sensitive Data Exposure Vulnerability CWE-201 7.5 -2025-08-20
CVE-2025-54688 WordPress JetEngine Plugin plugin <= 3.7.1.2 - Cross Site Scripting (XSS) Vulnerability CWE-79 6.5 Medium2025-08-14
CVE-2025-26870 WordPress JetEngine plugin <= 3.6.4.1 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2025-04-15
CVE-2025-0369 Jet Engine <= 3.6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via list_tag Parameter CWE-79 6.4 Medium2025-01-18
CVE-2023-48758 WordPress JetEngine plugin <= 3.2.4 - Broken Access Control vulnerability CWE-862 8.1 -2025-01-02
CVE-2023-48757 WordPress JetEngine plugin <= 3.2.4 - Privilege Escalation vulnerability CWE-269 8.8 High2024-05-17
CVE-2023-1406 JetEngine < 3.1.3.1 - Author+ Remote Code Execution 9.8 -2023-04-10

All 17 known CVE vulnerabilities affecting JetEngine with full Chinese analysis, references, and POCs where available.