Vulnerabilities (CVE)

Filtered by vendor Seopanel Subscribe
Filtered by product Seopanel
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-27461 1 Seopanel 1 Seopanel 2024-11-21 6.5 MEDIUM 8.8 HIGH
A remote code execution vulnerability in SEOPanel 4.6.0 has been fixed for 4.7.0. This vulnerability allowed for remote code execution through an authenticated file upload via the Settings Panel>Import website function.
CVE-2010-4331 1 Seopanel 1 Seopanel 2024-11-21 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel 2.2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) default_news or (2) sponsors cookies, which are not properly handled by (a) controllers/index.ctrl.php or (b) controllers/settings.ctrl.php.