Skip to main content

Telop01

2 CVEs product

Monthly

CVE-2021-20724 MEDIUM This Month

Reflected cross-site scripting vulnerability in the admin page of [Telop01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Telop01
NVD
CVSS 3.1
6.1
EPSS
0.8%
CVE-2020-5616 CRITICAL Act Now

[Calendar01], [Calendar02], [PKOBO-News01], [PKOBO-vote01], [Telop01], [Gallery01], [CalendarForm01], and [Link01] [Calendar01] free edition ver1.0.0, [Calendar02] free edition ver1.0.0,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Calendar01 Calendar02 Calendarform01 Gallery01 +4
NVD
CVSS 3.1
9.8
EPSS
3.1%
EPSS 1% CVSS 6.1
MEDIUM This Month

Reflected cross-site scripting vulnerability in the admin page of [Telop01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Telop01
NVD
EPSS 3% CVSS 9.8
CRITICAL Act Now

[Calendar01], [Calendar02], [PKOBO-News01], [PKOBO-vote01], [Telop01], [Gallery01], [CalendarForm01], and [Link01] [Calendar01] free edition ver1.0.0, [Calendar02] free edition ver1.0.0,. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Calendar01 Calendar02 +6
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy