Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

uncannyowl — Vulnerabilities & Security Advisories 6

Browse all 6 CVE security advisories affecting uncannyowl. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Uncannyowl primarily focuses on identifying vulnerabilities in web applications and enterprise software, with six CVEs recorded to date. Historically, their findings commonly involve remote code execution, cross-site scripting, and privilege escalation flaws, often in widely-used platforms. Their research has highlighted critical issues in content management systems and authentication mechanisms, though no major public security incidents have been directly attributed to their disclosures. The researcher maintains a reputation for thorough vulnerability analysis and responsible reporting practices, typically working with vendors to remediate issues before public disclosure. Their contributions have consistently improved security postures across multiple software ecosystems.

Top products by uncannyowl: Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin
CVE IDTitleCVSSSeverityPublished
CVE-2026-2269 Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin <= 7.0.0.3 - Authenticated (Administrator+) Server-Side Request Forgery to Arbitrary File Upload — Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder PluginCWE-434 7.2 High2026-03-03
CVE-2025-15522 Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin <= 6.10.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode — Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder PluginCWE-79 6.4 Medium2026-01-23
CVE-2025-4520 Uncanny Automator <= 6.4.0.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update — Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder PluginCWE-862 5.4 Medium2025-05-14
CVE-2025-3623 Uncanny Automator <= 6.4.0.1 - Unauthenticated PHP Object Injection in automator_api_decode_message Function — Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder PluginCWE-502 9.1 Critical2025-05-14
CVE-2025-2075 Uncanny Automator <= 6.3.0.2 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation — Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder PluginCWE-862 8.8 High2025-04-04
CVE-2024-13838 Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin <= 6.2 - Authenticated (Admin+) Server-Side Request Forgery via Webhook — Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder PluginCWE-918 5.5 Medium2025-03-12

This page lists every published CVE security advisory associated with uncannyowl. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.