Lucene search

Lenosp Security Vulnerabilities

cve

CVE-2023-7259

** DISPUTED ** A vulnerability was found in zzdevelop lenosp up to 20230831. It has been classified as problematic. This affects an unknown part of the component Adduser Page. The manipulation of the argument username with the input alert(1) leads to cross site scripting. It is possible to...

2.4CVSS

5.7AI Score

0.0004EPSS

2024-05-24 07:15 AM

cve

CVE-2023-42180

An arbitrary file upload vulnerability in the /user/upload component of lenosp 1.0-1.2.0 allows attackers to execute html code via a crafted JPG...

8.8CVSS

8.7AI Score

0.001EPSS

2023-09-14 04:15 PM

cve

CVE-2023-42178

Lenosp 1.0.0-1.2.0 is vulnerable to SQL Injection via the log query...

6.5CVSS

6.9AI Score

0.0005EPSS

2023-09-14 04:15 PM