Vulnerabilities (CVE)

Filtered by vendor Qibosoft Subscribe

Filtered by product Qibosoft

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-20808	1 Qibosoft	1 Qibosoft	2023-08-05	N/A	6.1 MEDIUM
Cross Site Scripting vulnerability in Qibosoft qibosoft v.7 and before allows a remote attacker to execute arbitrary code via the eindtijd and starttijd parameters of do/search.php.
CVE-2020-20943	1 Qibosoft	1 Qibosoft	2022-01-06	4.3 MEDIUM	4.3 MEDIUM
A Cross-Site Request Forgery (CSRF) in /member/post.php?job=postnew&step=post of Qibosoft v7 allows attackers to force victim users into arbitrarily publishing new articles via a crafted URL.
CVE-2020-20946	1 Qibosoft	1 Qibosoft	2022-01-03	3.5 LOW	5.4 MEDIUM
Qibosoft v7 contains a stored cross-site scripting (XSS) vulnerability in the component /admin/index.php?lfj=friendlink&action=add.