Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xiuno vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2018-8942
Xiuno BBS 4.0.0 has XSS in the adminpage sitename parameter.
Xiuno Bbs Project Xiuno Bbs 4.0.0
5
CVSSv2
CVE-2020-21493
An issue in the component route\user.php of Xiuno BBS v4.0.4 allows malicious users to enumerate usernames.
Xiuno Xiunobbs 4.0.4
5
CVSSv2
CVE-2019-19998
Xiuno BBS 4.0 allows XXE via plugin/xn_wechat_public/route/token.php.
Xiuno Xiunobbs 4.0
4.3
CVSSv2
CVE-2020-21494
A cross-site scripting (XSS) vulnerability in the component install\install.sql of Xiuno BBS 4.0.4 allows malicious users to execute arbitrary web scripts or HTML via changing the doctype value to 0.
Xiuno Xiunobbs 4.0.4
4.3
CVSSv2
CVE-2020-21495
A cross-site scripting (XSS) vulnerability in the component /admin/?setting-base.htm of Xiuno BBS 4.0.4 allows malicious users to execute arbitrary web scripts or HTML via the sitename parameter.
Xiuno Xiunobbs 4.0.4
4.3
CVSSv2
CVE-2020-21496
A cross-site scripting (XSS) vulnerability in the component /admin/?setting-base.htm of Xiuno BBS 4.0.4 allows malicious users to execute arbitrary web scripts or HTML via the sitebrief parameter.
Xiuno Xiunobbs 4.0.4
NA
CVE-2020-19914
Cross Site Scripting (XSS) in xiunobbs 4.0.4 allows remote malicious users to execute arbitrary web script or HTML via the attachment upload function.
Xiuno Xiunobbs 4.0.4
4.3
CVSSv2
CVE-2018-15559
The editor in Xiuno BBS 4.0.4 allows stored XSS.
Xiuno Xiunobbs 4.0.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2108
CVE-2024-31061
CVE-2024-25959
CVE-2023-45866
injection
IDOR
memory leak
CVE-2024-1086
CVE-2023-42931
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started