Vulnerabilities (CVE)

Filtered by vendor Riken Subscribe
Filtered by product Xoonips
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-5664 1 Riken 1 Xoonips 2024-11-21 7.5 HIGH 9.8 CRITICAL
Deserialization of untrusted data vulnerability in XooNIps 3.49 and earlier allows remote attackers to execute arbitrary code via unspecified vectors.
CVE-2020-5663 1 Riken 1 Xoonips 2024-11-21 4.0 MEDIUM 5.4 MEDIUM
Stored cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
CVE-2020-5662 1 Riken 1 Xoonips 2024-11-21 3.5 LOW 5.4 MEDIUM
Reflected cross-site scripting vulnerability in XooNIps 3.49 and earlier allows remote authenticated attackers to inject arbitrary script via unspecified vectors.
CVE-2020-5659 1 Riken 1 Xoonips 2024-11-21 6.5 MEDIUM 8.8 HIGH
SQL injection vulnerability in the XooNIps 3.49 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2020-5625 1 Riken 1 Xoonips 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in XooNIps 3.48 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
CVE-2020-5624 1 Riken 1 Xoonips 2024-11-21 7.5 HIGH 9.8 CRITICAL
SQL injection vulnerability in the XooNIps 3.48 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2014-1968 1 Riken 1 Xoonips 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.