Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seo panel vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-34117
SQL Injection vulnerability in SEO Panel 4.9.0 in api/user.api.php in function getUserName in the username parameter, allows malicious users to gain sensitive information.
Seopanel Seo Panel 4.9.0
4.3
CVSSv2
CVE-2021-39413
Multiple Cross Site Scripting (XSS) vulnerabilities exits in SEO Panel v4.8.0 via the (1) to_time parameter in (a) backlinks.php, (b) analytics.php, (c) log.php, (d) overview.php, (e) pagespeed.php, (f) rank.php, (g) review.php, (h) saturationchecker.php, (i) social_media.php, an...
Seopanel Seo Panel 4.8.0
NA
CVE-2024-22643
A Cross-Site Request Forgery (CSRF) vulnerability in SEO Panel version 4.10.0 allows remote malicious users to perform unauthorized user password resets.
Seopanel Seo Panel 4.10.0
NA
CVE-2024-22646
An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an malicious user to guess which emails exist on the system.
Seopanel Seo Panel 4.10.0
NA
CVE-2024-22647
An user enumeration vulnerability was found in SEO Panel 4.10.0. This issue occurs during user authentication, where a difference in error messages could allow an malicious user to determine if a username is valid or not, enabling a brute-force attack with valid usernames.
Seopanel Seo Panel 4.10.0
NA
CVE-2024-22648
A Blind SSRF vulnerability exists in the "Crawl Meta Data" functionality of SEO Panel version 4.10.0. This makes it possible for remote malicious users to scan ports in the local environment.
Seopanel Seo Panel 4.10.0
3.5
CVSSv2
CVE-2020-35930
Seo Panel 4.8.0 allows stored XSS by an Authenticated User via the url parameter, as demonstrated by the seo/seopanel/websites.php URI.
Seopanel Seo Panel 4.8.0
4.3
CVSSv2
CVE-2021-3002
Seo Panel 4.8.0 allows reflected XSS via the seo/seopanel/login.php?sec=forgot email parameter.
Seopanel Seo Panel 4.8.0
3.5
CVSSv2
CVE-2021-28420
A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote malicious users to inject JavaScript via alerts.php and the "from_time" parameter.
Seopanel Seo Panel 4.8.0
4.3
CVSSv2
CVE-2010-4331
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) default_news or (2) sponsors cookies, which are not properly handled by (a) controllers/index.ctrl.php or (b) controllers/setting...
Seopanel Seopanel 2.2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »