Vulnerabilities > Xxyopen
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-28 | CVE-2025-4036 | Unspecified vulnerability in Xxyopen Novel 3.5.0 A vulnerability was found in 201206030 Novel 3.5.0 and classified as critical. | 9.8 |
| 2025-04-27 | CVE-2025-3956 | Injection vulnerability in Xxyopen Novel-Cloud 1.4.0 A vulnerability has been found in 201206030 novel-cloud 1.4.0 and classified as critical. | 9.8 |
| 2025-04-16 | CVE-2025-3676 | SQL Injection vulnerability in Xxyopen Novel-Plus 3.5.0 A vulnerability classified as critical has been found in xxyopen Novel-Plus 3.5.0. | 9.8 |
| 2024-02-08 | CVE-2024-24014 | SQL Injection vulnerability in Xxyopen Novel-Plus A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. | 9.8 |
| 2024-02-08 | CVE-2024-24017 | SQL Injection vulnerability in Xxyopen Novel-Plus A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. | 9.8 |
| 2024-02-08 | CVE-2024-24021 | SQL Injection vulnerability in Xxyopen Novel-Plus A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior. | 9.8 |
| 2024-02-08 | CVE-2024-24018 | SQL Injection vulnerability in Xxyopen Novel-Plus A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. | 9.8 |
| 2024-02-08 | CVE-2024-24023 | SQL Injection vulnerability in Xxyopen Novel-Plus A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior. | 9.8 |
| 2024-02-08 | CVE-2024-24024 | Unrestricted Upload of File with Dangerous Type vulnerability in Xxyopen Novel-Plus An arbitrary File download vulnerability exists in Novel-Plus v4.3.0-RC1 and prior at com.java2nb.common.controller.FileController: fileDownload(). | 9.8 |
| 2024-02-08 | CVE-2024-24025 | Unrestricted Upload of File with Dangerous Type vulnerability in Xxyopen Novel-Plus An arbitrary File upload vulnerability exists in Novel-Plus v4.3.0-RC1 and prior at com.java2nb.common.controller.FileController: upload(). | 9.8 |