VYPR

onekeyadmin

by Keheying

CVEs (8)

  • CVE-2023-26957CriMar 9, 2023
    risk 0.59cvss 9.1epss 0.01

    onekeyadmin v1.3.9 was discovered to contain an arbitrary file delete vulnerability via the component \admin\controller\plugins.

  • CVE-2023-26956HigMar 8, 2023
    risk 0.49cvss 7.5epss 0.01

    onekeyadmin v1.3.9 was discovered to contain an arbitrary file read vulnerability via the component /admin1/curd/code.

  • CVE-2023-26951MedMar 16, 2023
    risk 0.35cvss 5.4epss 0.00

    onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Member List module.

  • CVE-2023-26952MedMar 8, 2023
    risk 0.35cvss 5.4epss 0.00

    onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Add Menu module.

  • CVE-2023-26950MedMar 8, 2023
    risk 0.35cvss 5.4epss 0.00

    onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Title parameter under the Adding Categories module.

  • CVE-2023-26955MedMar 7, 2023
    risk 0.35cvss 5.4epss 0.00

    onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Admin Group module.

  • CVE-2023-26954MedMar 7, 2023
    risk 0.35cvss 5.4epss 0.00

    onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the User Group module.

  • CVE-2023-26953MedMar 7, 2023
    risk 0.31cvss 4.8epss 0.00

    onekeyadmin v1.3.9 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Add Administrator module.