Opensource Security Vulnerabilities
feiqu-opensource Background Vertical authorization vulnerability exists in IndexController.java. demo users with low permission can perform operations within the permission of the admin super administrator and can use this vulnerability to change the blacklist IP address in the system at...
8.8CVSS
8.5AI Score
0.001EPSS
PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has directory traversal via a direct request for a listing of an uploads...
6.5CVSS
6.5AI Score
0.001EPSS
PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected HTML injection via the Search...
5.3CVSS
5.6AI Score
0.001EPSS
PHP Scripts Mall Opensource Classified Ads Script 3.2.2 has reflected Cross-Site Scripting (XSS) via the Search...
6.1CVSS
6AI Score
0.001EPSS
Opensource Classified Ads Script 3.2 has SQL Injection via the advance_result.php keyword...
9.8CVSS
9.9AI Score
0.002EPSS
The IAX2 protocol implementation in Asterisk Open Source 1.2.x before 1.2.35, 1.4.x before 1.4.26.2, 1.6.0.x before 1.6.0.15, and 1.6.1.x before 1.6.1.6; Business Edition B.x.x before B.2.5.10, C.2.x before C.2.4.3, and C.3.x before C.3.1.1; and s800i 1.3.x before 1.3.0.3 allows remote attackers...
6.4AI Score
0.966EPSS
SQL injection vulnerability in email.php in MGB OpenSource Guestbook 0.5.4.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id...
8.4AI Score
0.013EPSS
SQL injection vulnerability in GeoNetwork opensource before 2.0.3 allows remote attackers to execute arbitrary SQL commands, and complete a login, via unspecified...
8.6AI Score
0.006EPSS