Skip to main content

Xiunobbs

2 CVEs product

Monthly

CVE-2019-19998 HIGH POC This Week

Xiuno BBS 4.0 allows XXE via plugin/xn_wechat_public/route/token.php. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XXE PHP Xiunobbs
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2018-15559 MEDIUM POC This Month

The editor in Xiuno BBS 4.0.4 allows stored XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Xiunobbs
NVD
CVSS 3.0
6.1
EPSS
0.7%
EPSS 1% CVSS 7.5
HIGH POC This Week

Xiuno BBS 4.0 allows XXE via plugin/xn_wechat_public/route/token.php. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XXE PHP Xiunobbs
NVD
EPSS 1% CVSS 6.1
MEDIUM POC This Month

The editor in Xiuno BBS 4.0.4 allows stored XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Xiunobbs
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy