Ibarn Security Vulnerabilities and Issues — Ibarn CVE List

Lucene search

Ibarn ProjectIbarn

5 matches found

CVE•added 2024/02/29 1:44 a.m.•73 views

CVE-2024-26471

A reflected cross-site scripting (XSS) vulnerability in zhimengzhe iBarn v1.5 allows attackers to inject malicious JavaScript into the web browser of a victim via the search parameter in offer.php.

5.4CVSS5.5AI score0.00378EPSS

CVE•added 2022/12/15 7:15 p.m.•51 views

CVE-2020-20588

File upload vulnerability in function upload in action/Core.class.php in zhimengzhe iBarn 1.5 allows remote attackers to run arbitrary code via avatar upload to index.php.

8.8CVSS8.8AI score0.0025EPSS

CVE•added 2024/06/17 2:15 p.m.•38 views

CVE-2024-37625

zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the $search parameter at /index.php.

6.3CVSS6.2AI score0.00086EPSS

CVE•added 2024/06/17 2:15 p.m.•36 views

CVE-2024-38469

zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the $search parameter at /pay.php.

6.3CVSS6.2AI score0.00252EPSS

CVE•added 2024/06/17 2:15 p.m.•36 views

CVE-2024-38470

zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the $search parameter at /own.php.

6.1CVSS6.2AI score0.00474EPSS