Vulnerabilities > Bijiadao
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-15 | CVE-2018-18261 | Cross-site Scripting vulnerability in Bijiadao Waimai Super CMS 20150505 In waimai Super Cms 20150505, there is an XSS vulnerability via the /admin.php/Foodcat/addsave fcname parameter. | 6.1 |
| 2019-02-07 | CVE-2019-7585 | SQL Injection vulnerability in Bijiadao Waimai Super CMS 20150505 An issue was discovered in Waimai Super Cms 20150505. | 9.8 |
| 2019-02-07 | CVE-2019-7567 | Cross-site Scripting vulnerability in Bijiadao Waimai Super CMS 20150505 An issue was discovered in Waimai Super Cms 20150505. | 6.1 |
| 2019-01-02 | CVE-2019-3577 | SQL Injection vulnerability in Bijiadao Waimai Super CMS 20150505 An issue was discovered in Waimai Super Cms 20150505. | 9.8 |
| 2018-10-23 | CVE-2018-18622 | Cross-site Scripting vulnerability in Bijiadao Waimai Super CMS 20150505 An issue was discovered in Waimai Super Cms 20150505. | 6.1 |
| 2018-10-09 | CVE-2018-18082 | Cross-site Scripting vulnerability in Bijiadao Waimai Super CMS 20150505 XSS exists in Waimai Super Cms 20150505 via the fname parameter to the admin.php?m=Food&a=addsave or admin.php?m=Food&a=editsave URI. | 6.1 |
| 2018-09-01 | CVE-2018-16315 | Cross-Site Request Forgery (CSRF) vulnerability in Bijiadao Waimai Super CMS 20150505 In waimai Super Cms 20150505, there is a CSRF vulnerability that can change the configuration via admin.php?m=Config&a=add. | 6.5 |
| 2018-08-30 | CVE-2018-16157 | Unspecified vulnerability in Bijiadao Waimai Super CMS 20150505 waimai Super Cms 20150505 has a logic flaw allowing attackers to modify a price, before form submission, by observing data in a packet capture. | 5.3 |
| 2018-08-20 | CVE-2018-15570 | Cross-site Scripting vulnerability in Bijiadao Waimai Super CMS 20150505 In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter. | 4.8 |