Vulnerabilities > Kent WEB > Joyful Note > 2.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-02-28 | CVE-2015-0889 | Security Bypass vulnerability in Kent-Web Joyful Note 2.8/5.21/5.3 KENT-WEB Joyful Note before 5.3 allows remote attackers to delete files or write to files, and consequently execute arbitrary code, via vectors involving an article. | 7.5 |
| 2014-02-01 | CVE-2014-0812 | Cross-Site Scripting vulnerability in Kent-Web Joyful Note 2.8 Cross-site scripting (XSS) vulnerability in KENT-WEB Joyful Note 2.8 and earlier, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |