2 matches found
CVE-2021-36790
creationtimestamp| type| source ---|---|--- 2021-08-13 20:41:31+00:00| seen| https://t.me/cibsecurity/27330...
Multiple vulnerabilities in Extension "Dated News" (dated_news)
The extension fails to properly encode user input for output in HTML context CVE-2021-36790 and contains a blind SQL injection vulnerability CVE-2021-36789. It is also possible to confirm various applications CVE-2021-36792 and thereby obtain all application registration data CVE-2021-36791...