Vulnerabilities > YF Exam Project > YF Exam > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-03-03 CVE-2023-26779 Deserialization of Untrusted Data vulnerability in Yf-Exam Project Yf-Exam 1.8.0
CleverStupidDog yf-exam v 1.8.0 is vulnerable to Deserialization which can lead to remote code execution (RCE).
network
low complexity
yf-exam-project CWE-502
critical
 9.8
9.8
2023-03-02 CVE-2023-26780 SQL Injection vulnerability in Yf-Exam Project Yf-Exam 1.8.0
CleverStupidDog yf-exam v 1.8.0 is vulnerable to SQL Injection.
network
low complexity
yf-exam-project CWE-89
critical
 9.8
9.8