VYPR

188Jianzhan

by vtime-tech

CVEs (2)

  • CVE-2020-23685CriNov 2, 2021
    risk 0.64cvss 9.8epss 0.02

    SQL Injection vulnerability in 188Jianzhan v2.1.0, allows attackers to execute arbitrary code and gain escalated privileges, via the username parameter to login.php.

  • CVE-2021-39427MedDec 15, 2022
    risk 0.35cvss 5.4epss 0.00

    Cross site scripting vulnerability in 188Jianzhan 2.10 allows attackers to execute arbitrary code via the username parameter to /admin/reg.php.