Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xxyopen novel-plus 4.2.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-46981
SQL injection vulnerability in Novel-Plus v.4.2.0 allows a remote malicious user to execute arbitrary code via a crafted script to the sort parameter in /common/log/list.
Xxyopen Novel-plus 4.2.0
5.4
CVSSv3
CVE-2023-7166
A vulnerability classified as problematic has been found in Novel-Plus up to 4.2.0. This affects an unknown part of the file /user/updateUserInfo of the component HTTP POST Request Handler. The manipulation of the argument nickName leads to cross site scripting. It is possible to...
Xxyopen Novel-plus
4.8
CVSSv3
CVE-2023-7171
A vulnerability was found in Novel-Plus up to 4.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file novel-admin/src/main/java/com/java2nb/novel/controller/FriendLinkController.java of the component Friendly Link Handler...
Xxyopen Novel-plus
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6267
XML injection
CVE-2024-37673
CVE-2024-6266
CVE-2024-30078
arbitrary
CVE-2024-36886
CVE-2024-5346
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started