Vulnerabilities > Kent WEB > Joyful Note

DATE CVE VULNERABILITY TITLE RISK
2015-02-28 CVE-2015-0889 Security Bypass vulnerability in Kent-Web Joyful Note 2.8/5.21/5.3
KENT-WEB Joyful Note before 5.3 allows remote attackers to delete files or write to files, and consequently execute arbitrary code, via vectors involving an article.
network
low complexity
kent-web
7.5
2014-02-01 CVE-2014-0812 Cross-Site Scripting vulnerability in Kent-Web Joyful Note 2.8
Cross-site scripting (XSS) vulnerability in KENT-WEB Joyful Note 2.8 and earlier, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
4.3