VYPR
Vendor

Fobybus

Products
1
CVEs
5
Across products
5
Status
Private

Products

1

Recent CVEs

5
  • CVE-2023-40174MedAug 18, 2023
    risk 0.00cvss 6.8epss 0.00

    Social media skeleton is an uncompleted/framework social media project implemented using a php, css ,javascript and html. Insufficient session expiration is a web application security vulnerability that occurs when a web application does not properly manage the lifecycle of a…

  • CVE-2023-40173HigAug 18, 2023
    risk 0.00cvss 7.5epss 0.01

    Social media skeleton is an uncompleted/framework social media project implemented using a php, css ,javascript and html. Prior to version 1.0.5 Social media skeleton did not properly salt passwords leaving user passwords susceptible to cracking should an attacker gain access to…

  • CVE-2023-40172MedAug 18, 2023
    risk 0.00cvss 6.5epss 0.00

    Social media skeleton is an uncompleted/framework social media project implemented using a php, css ,javascript and html. A Cross-site request forgery (CSRF) attack is a type of malicious attack whereby an attacker tricks a victim into performing an action on a website that they…

  • CVE-2023-39518MedAug 8, 2023
    risk 0.00cvss 5.4epss 0.00

    social-media-skeleton is an uncompleted social media project implemented using PHP, MySQL, CSS, JavaScript, and HTML. Versions 1.0.0 until 1.0.3 have a stored cross-site scripting vulnerability. The problem is patched in v1.0.3.

  • CVE-2023-39344CriAug 4, 2023
    risk 0.00cvss 10.0epss 0.01

    social-media-skeleton is an uncompleted social media project. A SQL injection vulnerability in the project allows UNION based injections, which indirectly leads to remote code execution. Commit 3cabdd35c3d874608883c9eaf9bf69b2014d25c1 contains a fix for this issue.