Vulnerabilities (CVE)

Filtered by vendor Krisonav Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-2713 1 Krisonav 1 Krisonav 2024-02-04 6.8 MEDIUM N/A
Cross-site request forgery (CSRF) vulnerability in users_maint.html in KrisonAV CMS before 3.0.2 allows remote attackers to hijack the authentication of administrators for requests that create user accounts via a crafted request.
CVE-2013-2712 1 Krisonav 1 Krisonav 2024-02-04 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in services/get_article.php in KrisonAV CMS before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the content parameter.