Vulnerabilities > Hyweb

DATE CVE VULNERABILITY TITLE RISK
2021-01-22 CVE-2021-22849 Cross-site Scripting vulnerability in Hyweb Hycms-J1 7.4.3
Hyweb HyCMS-J1 backend editing function does not filter special characters.
network
low complexity
hyweb CWE-79
5.4
5.4
2021-01-22 CVE-2021-22847 SQL Injection vulnerability in Hyweb Hycms-J1 7.4.3
Hyweb HyCMS-J1's API fail to filter POST request parameters.
network
low complexity
hyweb CWE-89
8.8
8.8