Lucene search
K

24 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:42 a.m.6 views

CVE-2022-26268

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

9.8CVSS8.3AI score0.00941EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-30644

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00405EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-30829

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00941EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2021-30645

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00469EPSS
Exploits1References1
CNVD
CNVD
added 2022/03/29 12:0 a.m.130 views

xiaohuanxiong SQL injection vulnerability

xiaohuanxiong is an open source comic CMS by guoguo individual developers. xiaohuanxiong version 1.0 is vulnerable to SQL injection, which originates from the id parameter in /app/controller/Books.php. No detailed vulnerability details are available...

9.8CVSS3.8AI score0.00941EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/03/28 1:15 a.m.4 views

CVE-2022-26268

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

9.8CVSS6AI score0.00941EPSS
Exploits1References2
OSV
OSV
added 2022/03/28 1:15 a.m.5 views

CVE-2022-26268

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

9.8CVSS5.8AI score0.00941EPSS
Exploits1References1
NVD
NVD
added 2022/03/28 1:15 a.m.15 views

CVE-2022-26268

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

9.8CVSS0.00941EPSS
Exploits1References1
Prion
Prion
added 2022/03/28 1:15 a.m.11 views

Sql injection

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

7.5CVSS9.7AI score0.00941EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/28 12:32 a.m.19 views

CVE-2022-26268

Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php...

10AI score0.00941EPSS
Exploits1References1
CVE
CVE
added 2022/03/28 12:32 a.m.90 views

CVE-2022-26268

The connected documents confirm CVE-2022-26268 affects Xiaohuanxiong v1.0 and exposes a SQL injection vulnerability via the id parameter in /app/controller/Books.php. The vulnerability is described consistently across sources (e.g., NVD, CNVD, Red Hat, CVE lists). No specific exploit code, affect...

9.8CVSS9.7AI score0.00941EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/03/27 12:0 a.m.4 views

xiaohuanxiong CMS SQL注入漏洞

xiaohuanxiong is an open source comic CMS by guoguo individual developers. xiaohuanxiong version 1.0 is vulnerable to SQL injection, which originates from the id parameter in /app/controller/Books.php. No detailed vulnerability details are available...

9.8CVSS5.8AI score0.00941EPSS
Exploits1References3
CNVD
CNVD
added 2022/03/25 12:0 a.m.20 views

xiaohuanxiong CMS cross-site request forgery vulnerability

xiaohuanxiong CMS is a comic book CMS. xiaohuanxiong CMS version 5.0.17 is vulnerable to cross-site request forgery, which stems from a WEB application that does not sufficiently validate that the request is from a trusted user. An attacker could use this vulnerability to modify the password of t...

4.3CVSS6.3AI score0.00405EPSS
Exploits1Affected Software1
OSV
OSV
added 2022/03/23 5:15 p.m.2 views

CVE-2021-43737

An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password...

6.5CVSS6.6AI score0.00405EPSS
Exploits1References1
NVD
NVD
added 2022/03/23 5:15 p.m.12 views

CVE-2021-43737

An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password...

6.5CVSS0.00405EPSS
Exploits1References1
Prion
Prion
added 2022/03/23 5:15 p.m.12 views

Cross site request forgery (csrf)

An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password...

4.3CVSS6.5AI score0.00405EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2022/03/23 4:15 p.m.10 views

CVE-2021-43738

An issue was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can that can add the administrator account...

8.8CVSS0.00469EPSS
Exploits1References1
OSV
OSV
added 2022/03/23 4:15 p.m.1 views

CVE-2021-43738

An issue was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can that can add the administrator account...

8.8CVSS7.3AI score0.00469EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/03/23 4:3 p.m.21 views

CVE-2021-43737

An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password...

6.7AI score0.00405EPSS
Exploits1References1
CVE
CVE
added 2022/03/23 4:3 p.m.84 views

CVE-2021-43737

CVE-2021-43737 affects xiaohuanxiong CMS 5.0.17. The issue is a cross-site request forgery (CSRF) in the WEB application that allows an attacker to modify the password of the administrator account. Root cause described in sources is insufficient validation that requests originate from a trusted u...

6.5CVSS6.4AI score0.00405EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder