Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
white shark systems project white shark systems 1.3.2 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-20466
White Shark System (WSS) 1.3.2 is vulnerable to unauthorized access via user_edit_password.php, remote attackers can modify the password of any user.
White Shark Systems Project White Shark Systems 1.3.2
6.5
CVSSv3
CVE-2020-20468
White Shark System (WSS) 1.3.2 is vulnerable to CSRF. Attackers can use the user_edit_password.php file to modify the user password.
White Shark Systems Project White Shark Systems 1.3.2
7.5
CVSSv3
CVE-2020-20469
White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the log_edit.php files failing to filter the csa_to_user parameter, remote attackers can exploit the vulnerability to obtain database sensitive information.
White Shark Systems Project White Shark Systems 1.3.2
8.8
CVSSv3
CVE-2020-20471
White Shark System (WSS) 1.3.2 has an unauthorized access vulnerability in default_user_edit.php, remote attackers can exploit this vulnerability to escalate to admin privileges.
White Shark Systems Project White Shark Systems 1.3.2
5.3
CVSSv3
CVE-2020-20472
White Shark System (WSS) 1.3.2 has a sensitive information disclosure vulnerability. The if_get_addbook.php file does not have an authentication operation. Remote attackers can obtain username information for all users of the current site.
White Shark Systems Project White Shark Systems 1.3.2
7.5
CVSSv3
CVE-2020-20473
White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the control_task.php, control_project.php, default_user.php files failing to filter the sort parameter. Remote attackers can exploit the vulnerability to obtain database sensitive infor...
White Shark Systems Project White Shark Systems 1.3.2
7.5
CVSSv3
CVE-2020-20474
White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the default_task_edituser.php files failing to filter the csa_to_user parameter. Remote attackers can exploit the vulnerability to obtain database sensitive information.
White Shark Systems Project White Shark Systems 1.3.2
5.3
CVSSv3
CVE-2020-20470
White Shark System (WSS) 1.3.2 has web site physical path leakage vulnerability.
White Shark Systems Project White Shark Systems 1.3.2
6.5
CVSSv3
CVE-2020-20467
White Shark System (WSS) 1.3.2 is vulnerable to sensitive information disclosure via default_task_add.php, remote attackers can exploit the vulnerability to create a task.
White Shark Systems Project White Shark Systems 1.3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started