Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seopanel vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-27461
A remote code execution vulnerability in SEOPanel 4.6.0 has been fixed for 4.7.0. This vulnerability allowed for remote code execution through an authenticated file upload via the Settings Panel>Import website function.
Seopanel Seopanel 4.6.0
8.8
CVSSv3
CVE-2017-10839
SQL injection vulnerability in the SEO Panel prior to version 3.11.0 allows authenticated malicious users to execute arbitrary SQL commands via unspecified vectors.
Seopanel Seo Panel
7.5
CVSSv3
CVE-2021-34117
SQL Injection vulnerability in SEO Panel 4.9.0 in api/user.api.php in function getUserName in the username parameter, allows malicious users to gain sensitive information.
Seopanel Seo Panel 4.9.0
6.5
CVSSv3
CVE-2024-22643
A Cross-Site Request Forgery (CSRF) vulnerability in SEO Panel version 4.10.0 allows remote malicious users to perform unauthorized user password resets.
Seopanel Seo Panel 4.10.0
6.1
CVSSv3
CVE-2021-39413
Multiple Cross Site Scripting (XSS) vulnerabilities exits in SEO Panel v4.8.0 via the (1) to_time parameter in (a) backlinks.php, (b) analytics.php, (c) log.php, (d) overview.php, (e) pagespeed.php, (f) rank.php, (g) review.php, (h) saturationchecker.php, (i) social_media.php, an...
Seopanel Seo Panel 4.8.0
6.1
CVSSv3
CVE-2021-3002
Seo Panel 4.8.0 allows reflected XSS via the seo/seopanel/login.php?sec=forgot email parameter.
Seopanel Seo Panel 4.8.0
6.1
CVSSv3
CVE-2017-10838
Cross-site scripting vulnerability in SEO Panel prior to version 3.11.0 allows an malicious user to inject arbitrary web script or HTML via unspecified vectors.
Seopanel Seo Panel
5.4
CVSSv3
CVE-2020-35930
Seo Panel 4.8.0 allows stored XSS by an Authenticated User via the url parameter, as demonstrated by the seo/seopanel/websites.php URI.
Seopanel Seo Panel 4.8.0
5.3
CVSSv3
CVE-2024-22646
An email address enumeration vulnerability exists in the password reset function of SEO Panel version 4.10.0. This allows an malicious user to guess which emails exist on the system.
Seopanel Seo Panel 4.10.0
5.3
CVSSv3
CVE-2024-22647
An user enumeration vulnerability was found in SEO Panel 4.10.0. This issue occurs during user authentication, where a difference in error messages could allow an malicious user to determine if a username is valid or not, enabling a brute-force attack with valid usernames.
Seopanel Seo Panel 4.10.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »