All 4 CVE vulnerabilities found in hotcrp, with AI-generated Chinese analysis, references, and POCs.
Vendor: n/a
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-25156 | HotCRP vulnerable to stored XSS via comment attachments CWE-79 | 7.3 | High | 2026-01-30 |
| CVE-2026-23878 | HotCRP vulnerable to exposure of submitted documents CWE-201 | 6.5 | Medium | 2026-01-19 |
| CVE-2026-23836 | HotCRP vulnerable to remote code execution through formulas CWE-20 | 10.0 | Critical | 2026-01-19 |
| CVE-2022-4819 | HotCRP cross site scripting CWE-79 | 2.4 | Low | 2022-12-28 |
All 4 known CVE vulnerabilities affecting hotcrp with full Chinese analysis, references, and POCs where available.