Vulnerabilities > Rockoa > Xinhu

DATE CVE VULNERABILITY TITLE RISK
2023-12-06 CVE-2023-48930 Unrestricted Upload of File with Dangerous Type vulnerability in Rockoa Xinhu 2.2.1
xinhu xinhuoa 2.2.1 contains a File upload vulnerability.
network
low complexity
rockoa CWE-434
critical
 9.8
9.8
2020-12-26 CVE-2020-35388 Unspecified vulnerability in Rockoa Xinhu 2.1.9
rainrocka xinhu 2.1.9 allows remote attackers to obtain sensitive information via an index.php?a=gettotal request in which the ajaxbool value is manipulated to be true.
network
low complexity
rockoa
5.0
5.0