Vulnerabilities > Xxyopen > Novel Plus > 4.1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-06 | CVE-2024-24015 | SQL Injection vulnerability in Xxyopen Novel-Plus A SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. | 9.8 |
| 2023-12-29 | CVE-2023-7171 | Unspecified vulnerability in Xxyopen Novel-Plus A vulnerability was found in Novel-Plus up to 4.2.0. | 4.8 |
| 2023-12-29 | CVE-2023-7166 | Unspecified vulnerability in Xxyopen Novel-Plus A vulnerability classified as problematic has been found in Novel-Plus up to 4.2.0. | 5.4 |
| 2023-09-18 | CVE-2023-41443 | SQL Injection vulnerability in Xxyopen Novel-Plus 4.1.0 SQL injection vulnerability in Novel-Plus v.4.1.0 allows a remote attacker to execute arbitrary code via a crafted script to the sort parameter in /sys/menu/list. | 7.2 |