cbcvebase.

Riken Xoonips vulnerabilities

7 known vulnerabilities affecting riken/xoonips.

Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2020-5664P2CRITICALCVSS 9.8≤ 3.492020-11-16
CVE-2020-5664 [CRITICAL] CWE-502 CVE-2020-5664: Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2020-5624P3CRITICALCVSS 9.8≤ 3.482020-08-28
CVE-2020-5624 [CRITICAL] CWE-89 CVE-2020-5624: SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbit SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2020-5659P3HIGHCVSS 8.8≤ 3.492020-11-16
CVE-2020-5659 [HIGH] CWE-89 CVE-2020-5659: SQL injection vulnerability in the XooNIps 3.49 and earlier allows remote authenticated attackers to SQL injection vulnerability in the XooNIps 3.49 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2020-5663P4MEDIUMCVSS 5.4≤ 3.492020-11-16
CVE-2020-5663 [MEDIUM] CWE-79 CVE-2020-5663: Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated at Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
nvd
CVE-2020-5625P4MEDIUMCVSS 6.1≤ 3.482020-08-28
CVE-2020-5625 [MEDIUM] CWE-79 CVE-2020-5625: Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
nvd
CVE-2020-5662P4MEDIUMCVSS 5.4≤ 3.492020-11-16
CVE-2020-5662 [MEDIUM] CWE-79 CVE-2020-5662: Reflected cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated Reflected cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
nvd
CVE-2014-1968P4MEDIUMCVSS 4.3≤ 3.47v3.40+6 more2014-02-27
CVE-2014-1968 [MEDIUM] CWE-79 CVE-2014-1968: Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows rem Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
Riken Xoonips vulnerabilities | cvebase