CoCoCoCoCoColi/CVE

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-21725 ↗	Oct 7, 2021Thursday, 7 October 2021, 22:15	9.8 CRITICAL	7.5 HIGH
OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php via the pid parameter.
CVE-2020-21726 ↗	Oct 7, 2021Thursday, 7 October 2021, 22:15	9.8 CRITICAL	7.5 HIGH
OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php via the cid parameter.
CVE-2020-21729 ↗	Oct 7, 2021Thursday, 7 October 2021, 22:15	5.4 MEDIUM	3.5 LOW
JEECMS x1.1 contains a stored cross-site scripting (XSS) vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload.