Vulnerabilities > TT RSS > Tiny Tiny RSS > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-09-19 CVE-2020-25787 Improper Input Validation vulnerability in Tt-Rss Tiny RSS 17.4
An issue was discovered in Tiny Tiny RSS (aka tt-rss) before 2020-09-16.
network
low complexity
tt-rss CWE-20
critical
 9.8
9.8
2017-11-20 CVE-2017-16896 SQL Injection vulnerability in Tt-Rss Tiny RSS 17.4
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter.
network
low complexity
tt-rss CWE-89
critical
 9.8
9.8