Vulnerabilities > Xxyopen > Novel Plus > 3.6.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-06 | CVE-2024-24015 | SQL Injection vulnerability in Xxyopen Novel-Plus A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. | 9.8 |
| 2023-12-29 | CVE-2023-7171 | Unspecified vulnerability in Xxyopen Novel-Plus A vulnerability was found in Novel-Plus up to 4.2.0. | 4.8 |
| 2023-12-29 | CVE-2023-7166 | Unspecified vulnerability in Xxyopen Novel-Plus A vulnerability classified as problematic has been found in Novel-Plus up to 4.2.0. | 5.4 |
| 2022-08-17 | CVE-2022-35121 | SQL Injection vulnerability in Xxyopen Novel-Plus 3.6.1 Novel-Plus v3.6.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /service/impl/BookServiceImpl.java. | 9.8 |
| 2022-04-28 | CVE-2021-41921 | Unrestricted Upload of File with Dangerous Type vulnerability in Xxyopen Novel-Plus 3.6.1 novel-plus V3.6.1 allows unrestricted file uploads. | 9.8 |