CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

whatsns is an open source online question and answer system. The system supports cloud storage, image watermark settings, full-text search, on-site behavior monitoring, SMS registration and notification, and other features. A SQL injection vulnerability exists in Whatsns, which originates from th...

9.8CVSS8.6AI score0.00513EPSS

Exploits1References2

Cvelist•added 2021/07/27 3:2 p.m.•14 views

CVE-2020-18013

SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?adminbanned/add.htm...

9.7AI score0.00513EPSS

Exploits1References1

CVE•added 2021/07/27 3:2 p.m.•41 views

CVE-2020-18013

CVE-2020-18013 describes an SQL injection in Whatsns 4.0, exploitable through the ip parameter in index.php?admin_banned/add.htm. Root cause: failure to filter special characters in the ip parameter. Impact stated in connected docs: ability to execute SQL statements. No remediation details are pr...

9.8CVSS9.6AI score0.00513EPSS

Exploits1References1Affected Software1

CNVD•added 2019/08/26 12:0 a.m.•1 views

SQL Injection Vulnerability in WHATSNS System Backend

WHATSNS set Q&A, articles, courses, collection, SEO optimization, operational functions in one of the open source system. WHATSNS system backend SQL injection vulnerability , attackers can exploit the vulnerability to obtain database sensitive information...

7.7AI score

Exploits0

CNVD•added 2019/08/06 12:0 a.m.•0 views

XSS Vulnerability in WHATSNS System

WHATSNS system is a php open source Q&A system that can quickly build verticalized domains based on your business needs. WHATSNS system has an XSS vulnerability that can be exploited by attackers to obtain sensitive information...

6.2AI score

Exploits0

CNVD•added 2019/08/06 12:0 a.m.•1 views

SQL Injection Vulnerability in WHATSNS System se***.html Page

WHATSNS system is a php open source Q&A system that can quickly build verticalized domains according to your business needs. WHATSNS system se.html page SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...

7.9AI score

Exploits0

OSV•added 2019/04/22 3:29 p.m.•0 views

CVE-2019-11452

whatsns 4.0 allows index.php?admincategory/remove.html cid SQL injection...

7.2CVSS7.1AI score0.0026EPSS

Exploits1References1

NVD•added 2019/04/22 3:29 p.m.•11 views

CVE-2019-11452

whatsns 4.0 allows index.php?admincategory/remove.html cid SQL injection...

7.2CVSS7.5AI score0.0026EPSS

Exploits1References1