Lucene search

K

SmodBIP Security Vulnerabilities

cve
cve

CVE-2023-5378

Improper Input Validation vulnerability in MegaBIP and already unsupported SmodBIP software allows for Stored XSS.This issue affects SmodBIP in all versions and MegaBIP in versions up to 4.36.2. MegaBIP 5.08 was tested and is not vulnerable. A precise range of vulnerable versions remains...

8.8CVSS

5.4AI Score

0.001EPSS

2024-01-29 12:15 PM
41
cve
cve

CVE-2023-4837

SmodBIP is vulnerable to Cross-Site Request Forgery, that could be used to induce logged in users to perform unintended actions, including creation of additional accounts with administrative privileges. This issue affects all versions of SmodBIP. SmodBIP is no longer maintained and the...

8.8CVSS

8.5AI Score

0.001EPSS

2023-10-10 10:15 AM
16
cve
cve

CVE-2007-1920

SQL injection vulnerability in index.php in the aktualnosci module in SmodBIP 1.06 and earlier allows remote attackers to execute arbitrary SQL commands via the zoom parameter, possibly related to...

8.4AI Score

0.007EPSS

2007-04-10 11:19 PM
29