Riken Xoonips vulnerabilities
7 known vulnerabilities affecting riken/xoonips.
Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2020-5664P2CRITICALCVSS 9.8≤ 3.492020-11-16
CVE-2020-5664 [CRITICAL] CWE-502 CVE-2020-5664: Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers
Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2020-5624P3CRITICALCVSS 9.8≤ 3.482020-08-28
CVE-2020-5624 [CRITICAL] CWE-89 CVE-2020-5624: SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbit
SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2020-5659P3HIGHCVSS 8.8≤ 3.492020-11-16
CVE-2020-5659 [HIGH] CWE-89 CVE-2020-5659: SQL injection vulnerability in the XooNIps 3.49 and earlier allows remote authenticated attackers to
SQL injection vulnerability in the XooNIps 3.49 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
nvd
CVE-2020-5663P4MEDIUMCVSS 5.4≤ 3.492020-11-16
CVE-2020-5663 [MEDIUM] CWE-79 CVE-2020-5663: Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated at
Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
nvd
CVE-2020-5625P4MEDIUMCVSS 6.1≤ 3.482020-08-28
CVE-2020-5625 [MEDIUM] CWE-79 CVE-2020-5625: Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an
Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
nvd
CVE-2020-5662P4MEDIUMCVSS 5.4≤ 3.492020-11-16
CVE-2020-5662 [MEDIUM] CWE-79 CVE-2020-5662: Reflected cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated
Reflected cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
nvd
CVE-2014-1968P4MEDIUMCVSS 4.3≤ 3.47v3.40+6 more2014-02-27
CVE-2014-1968 [MEDIUM] CWE-79 CVE-2014-1968: Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows rem
Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd