Vulnerabilities > Xinheinformation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-15 | CVE-2021-42329 | Cross-site Scripting vulnerability in Xinheinformation Xinhe Teaching Platform System V2021 The “List_Add” function of message board of ShinHer StudyOnline System does not filter special characters in the title parameter. | 3.5 |
| 2021-10-15 | CVE-2021-42330 | Unspecified vulnerability in Xinheinformation Xinhe Teaching Platform System V2021 The “Teacher Edit” function of ShinHer StudyOnline System does not perform authority control. | 5.5 |
| 2021-10-15 | CVE-2021-42331 | Missing Authorization vulnerability in Xinheinformation Xinhe Teaching Platform System V2021 The “Study Edit” function of ShinHer StudyOnline System does not perform permission control. | 5.5 |
| 2021-10-15 | CVE-2021-42332 | Unspecified vulnerability in Xinheinformation Xinhe Teaching Platform System V2021 The “List View” function of ShinHer StudyOnline System is not under authority control. | 4.0 |