Skip to main content

Kandnconcepts Club Cms

2 CVEs product

Monthly

CVE-2020-23977 MEDIUM POC This Month

KandNconcepts Club CMS 1.1 and 1.2 has cross site scripting via the 'team.php,player.php,club.php' id parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Kandnconcepts Club Cms
NVD
CVSS 3.1
6.1
EPSS
0.8%
CVE-2020-23973 CRITICAL POC Act Now

KandNconcepts Club CMS 1.1 and 1.2 has SQL Injection via the 'team.php,player.php,club.php' id parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Kandnconcepts Club Cms
NVD
CVSS 3.1
9.8
EPSS
1.6%
EPSS 1% CVSS 6.1
MEDIUM POC This Month

KandNconcepts Club CMS 1.1 and 1.2 has cross site scripting via the 'team.php,player.php,club.php' id parameter. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Kandnconcepts Club Cms
NVD
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

KandNconcepts Club CMS 1.1 and 1.2 has SQL Injection via the 'team.php,player.php,club.php' id parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Kandnconcepts Club Cms
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy