CVEs (4)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Kashipara 1Online Notice Board System Nov 21, 2024 Jan 4, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Online Notice Board System v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'f' parameter of user/update_profile_pic.php page, allowing an authenticated attacker to obtain Remote Code Execution on the s...Show more |
1Kashipara 1Online Notice Board System Nov 21, 2024 Jan 4, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'dd' parameter of the user/update_profile.php resource does not validate the characters received and they are s...Show more |
1Kashipara 1Online Notice Board System Nov 21, 2024 Jan 4, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'e' parameter of the login.php resource does not validate the characters received and they are sent unfiltered...Show more |
1Kashipara 1Online Notice Board System Nov 21, 2024 Jan 4, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'dd' parameter of the registration.php resource does not validate the characters received and they are sent unf...Show more |