Lucene search

K
XxyopenNovel-plus

5 matches found

CVE
CVE
added 2023/03/23 8:15 p.m.93 views

CVE-2023-1607

A vulnerability was found in novel-plus 3.6.2. It has been classified as critical. This affects an unknown part of the file /common/sysFile/list. The manipulation of the argument sort leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the publi...

8.8CVSS6.9AI score0.00058EPSS
CVE
CVE
added 2023/04/14 8:15 a.m.92 views

CVE-2023-2039

A vulnerability was found in novel-plus 3.6.2. It has been rated as critical. This issue affects some unknown processing of the file /author/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack may be initiated remotely. The exploit has been di...

8.8CVSS7.7AI score0.00053EPSS
CVE
CVE
added 2023/04/14 9:15 a.m.90 views

CVE-2023-2041

A vulnerability classified as critical was found in novel-plus 3.6.2. Affected by this vulnerability is an unknown functionality of the file /category/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. The attack can be launched remotely. The exploit ha...

8.8CVSS7.8AI score0.00053EPSS
CVE
CVE
added 2023/04/14 9:15 a.m.38 views

CVE-2023-2040

A vulnerability classified as critical has been found in novel-plus 3.6.2. Affected is an unknown function of the file /news/list?limit=10&offset=0&order=desc. The manipulation of the argument sort leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed ...

8.8CVSS7.8AI score0.00053EPSS
CVE
CVE
added 2025/06/24 1:15 a.m.7 views

CVE-2025-6535

A vulnerability has been found in xxyopen/201206030 novel-plus up to 5.1.3 and classified as critical. This vulnerability affects the function list of the file novel-admin/src/main/resources/mybatis/system/UserMapper.xml of the component User Management Module. The manipulation of the argument sort...

8.8CVSS7.4AI score0.00032EPSS