censura CVE Vulnerabilities & CVE List (4)

Products (CPE): — CVEs: 4

censura vulnerability overview

Aggregates CVE and security vulnerability intelligence across all censura-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Common weakness patterns include vendor risk sql injection and vendor risk cross-site scripting, with potential vendor impact session compromise and vendor impact data exposure across vendor surface software deployment use cases.

Vulnerability distribution trend (last 24 months)

CVE	Summary	Source	Max CVSS	EPSS %	Published	Updated
CVE-2009-2595	Cross-site scripting (XSS) vulnerability in productSearch.html in Censura 2.0.4 and 2.1.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter in a ProductSearch action.	[email protected]	4.3	0.78%	2009-07-24	2026-04-23
CVE-2009-2594	Cross-site scripting (XSS) vulnerability in censura.php in Censura 1.16.04 allows remote attackers to inject arbitrary web script or HTML via the itemid parameter in a details action.	[email protected]	4.3	1.90%	2009-07-24	2026-04-23
CVE-2009-2593	SQL injection vulnerability in censura.php in Censura 1.16.04 allows remote attackers to execute arbitrary SQL commands via the itemid parameter in a details action.	[email protected]	7.5	0.34%	2009-07-24	2026-04-23
CVE-2007-2673	SQL injection vulnerability in includes/funcs_vendors.php in Censura 1.15.04, and other versions before 1.16.04, allows remote attackers to execute arbitrary SQL commands via the vendorid parameter in a vendor_info cmd action to censura.php.	[email protected]	7.5	1.82%	2007-05-14	2026-04-23

cvelogic Threat Intelligence