Lucene search

Iblsoft Security Vulnerabilities

cve

IBL Online Weather before 4.3.5a allows attackers to obtain sensitive information by reading the IWEBSERVICE_JSONRPC_COOKIE...

5.3CVSS

6.8AI Score

0.001EPSS

2020-02-26 12:15 AM

cve

IBL Online Weather before 4.3.5a allows unauthenticated eval injection via the queryBCP method of the Auxiliary...

9.8CVSS

7.8AI Score

0.022EPSS

2020-02-26 12:15 AM

cve

IBL Online Weather before 4.3.5a allows unauthenticated reflected XSS via the redirect...

6.1CVSS

6.3AI Score

0.001EPSS

2020-02-26 12:15 AM