Vulnerabilities (CVE)

Filtered by vendor Xiao5ucompany Project Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-14960 1 Xiao5ucompany Project 1 Xiao5ucompany 2024-11-21 6.8 MEDIUM 8.8 HIGH
Xiao5uCompany 1.7 has CSRF via admin/Admin.asp.
CVE-2018-14527 1 Xiao5ucompany Project 1 Xiao5ucompany 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Feedback.asp in Xiao5uCompany 1.7 has XSS because the XSS protection mechanism in Safe.asp is insufficient (for example, it considers SCRIPT and IMG elements, but does not consider VIDEO elements).