Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seo panel vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-22643
A Cross-Site Request Forgery (CSRF) vulnerability in SEO Panel version 4.10.0 allows remote malicious users to perform unauthorized user password resets.
Seopanel Seo Panel 4.10.0
NA
CVE-2024-22646
An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an malicious user to guess which emails exist on the system.
Seopanel Seo Panel 4.10.0
NA
CVE-2024-22647
An user enumeration vulnerability was found in SEO Panel 4.10.0. This issue occurs during user authentication, where a difference in error messages could allow an malicious user to determine if a username is valid or not, enabling a brute-force attack with valid usernames.
Seopanel Seo Panel 4.10.0
NA
CVE-2024-22648
A Blind SSRF vulnerability exists in the "Crawl Meta Data" functionality of SEO Panel version 4.10.0. This makes it possible for remote malicious users to scan ports in the local environment.
Seopanel Seo Panel 4.10.0
312
VMScore
CVE-2020-35930
Seo Panel 4.8.0 allows stored XSS by an Authenticated User via the url parameter, as demonstrated by the seo/seopanel/websites.php URI.
Seopanel Seo Panel 4.8.0
312
VMScore
CVE-2021-28420
A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote malicious users to inject JavaScript via alerts.php and the "from_time" parameter.
Seopanel Seo Panel 4.8.0
312
VMScore
CVE-2021-29008
A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote malicious users to inject JavaScript via webmaster-tools.php in the "to_time" parameter.
Seopanel Seo Panel 4.8.0
312
VMScore
CVE-2021-29009
A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote malicious users to inject JavaScript via archive.php in the "type" parameter.
Seopanel Seo Panel 4.8.0
312
VMScore
CVE-2021-29010
A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote malicious users to inject JavaScript via archive.php in the "report_type" parameter.
Seopanel Seo Panel 4.8.0
435
VMScore
CVE-2010-4331
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) default_news or (2) sponsors cookies, which are not properly handled by (a) controllers/index.ctrl.php or (b) controllers/setting...
Seopanel Seopanel 2.2.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
command injection
CVE-2021-47511
CVE-2024-26238
CVE-2024-4858
CVE-2024-21305
XXE
CVE-2021-47555
CVE-2021-47526
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »