VYPR
← All vendors
Vendor

Krisonav

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2013-2712May 23, 2014
    risk 0.04cvss epss 0.07

    Cross-site scripting (XSS) vulnerability in services/get_article.php in KrisonAV CMS before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the content parameter.

  • CVE-2013-2713May 23, 2014
    risk 0.03cvss epss 0.01

    Cross-site request forgery (CSRF) vulnerability in users_maint.html in KrisonAV CMS before 3.0.2 allows remote attackers to hijack the authentication of administrators for requests that create user accounts via a crafted request.