Vulnerabilities > Xiaohuanxiong Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-03-28	CVE-2022-26268	SQL Injection vulnerability in Xiaohuanxiong Project Xiaohuanxiong 1.0 Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php. network low complexity xiaohuanxiong-project CWE-89 critical	9.8
2022-03-23	CVE-2021-43737	Cross-Site Request Forgery (CSRF) vulnerability in Xiaohuanxiong Project Xiaohuanxiong CMS 5.0.17 An issus was discovered in xiaohuanxiong CMS 5.0.17. network low complexity xiaohuanxiong-project CWE-352	6.5

Vulnerabilities > Xiaohuanxiong Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Xiaohuanxiong Project"}]}