JupiterX Core
artbees
Developer
4.13.0
Latest version
80,000
Installations
Nov 28, 2025
Last updated
Vulnerability history
0 present
18 fixed
12 Mitigation rules
- Cross Site Scripting (XSS) Vulnerability<= 4.11.0Sep 22, 2025
- Authenticated (Contributor+) Stored Cross-Site Scripting via Inline SVG vulnerability<= 4.8.12May 16, 2025
- Cross Site Scripting (XSS) Vulnerability<= 4.8.11May 7, 2025
- Unauthenticated PHP Object Injection via PHAR vulnerability<= 4.8.11Apr 25, 2025
- Authenticated (Contributor+) SVG Upload to Local File Inclusion (Remote Code Execution) vulnerability<= 4.8.7Jan 31, 2025
- Authenticated (Contributor+) Arbitrary File Read vulnerability<= 4.8.7Jan 31, 2025
- Missing Authorization to Unauthenticated Popup Template Export vulnerability<= 4.8.5Jan 7, 2025
- Missing Authorization to Authenticated Library Sync vulnerability<= 4.8.5Jan 7, 2025
- Unauthenticated Arbitrary File Upload vulnerability<= 4.6.5Sep 26, 2024
- Limited Unauthenticated Authentication Bypass to Account Takeover vulnerability<= 4.7.5Sep 26, 2024
- Unauth. Arbitrary File Upload vulnerability<= 3.3.5Aug 22, 2023
- Unauthenticated Account Takeover vulnerability<= 3.3.8Aug 22, 2023
- Multiple Auth. Broken Access Control vulnerability3.0.0-3.3.0Aug 13, 2023
- Multiple Auth. Broken Access Control vulnerability3.0.0-3.3.0Aug 13, 2023
- Unauth. Arbitrary File Download vulnerability<= 4.6.6Jul 20, 2023
- Authenticated Privilege Escalation and Post deletion vulnerability<= 2.0.7May 18, 2022
- Insufficient Access Control leading to Authenticated Arbitrary Plugin Deactivation and Settings Modification<= 2.0.6May 18, 2022
- Information Disclosure, Modification, and Denial of Service (DoS) vulnerabilities<= 2.0.6May 18, 2022