Lucene search
WallosappWallos*
4 matches found
CVE-2024-22776
Wallos 0.9 is vulnerable to Cross Site Scripting (XSS) in all text-based input fields without proper validation, excluding those requiring specific formats like date fields.
4.7CVSS5.9AI score0.00095EPSS
CVE-2024-29320
Wallos before 1.15.3 is vulnerable to SQL Injection via the category and payment parameters to /subscriptions/get.php.
8.1CVSS8AI score0.00106EPSS
CVE-2024-55372
Wallos
9.8CVSS7.7AI score0.00441EPSS
CVE-2024-55371
Wallos
9.8CVSS7.3AI score0.00092EPSS