Aggregates CVE and security vulnerability intelligence across all mangoswebv4_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk cross-site scripting, with potential vendor impact session compromise across vendor surface software deployment and vendor surface production workloads use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-6812 | paintballrefjosh/MaNGOSWebV4 4.0.8 is vulnerable to a reflected XSS in inc/admin/template_files/admin.vote.php (id parameter). | [email protected] | 6.1 | 0.22% | 2017-03-11 | 2026-05-13 |
| CVE-2017-6811 | paintballrefjosh/MaNGOSWebV4 4.0.8 is vulnerable to a reflected XSS in inc/admin/template_files/admin.shop.php (id parameter). | [email protected] | 6.1 | 0.22% | 2017-03-11 | 2026-05-13 |
| CVE-2017-6810 | paintballrefjosh/MaNGOSWebV4 4.0.8 is vulnerable to a reflected XSS in inc/admin/template_files/admin.fplinks.php (linkid parameter). | [email protected] | 6.1 | 0.22% | 2017-03-11 | 2026-05-13 |
| CVE-2017-6809 | paintballrefjosh/MaNGOSWebV4 4.0.8 is vulnerable to a reflected XSS in inc/admin/template_files/admin.donate.php (id parameter). | [email protected] | 6.1 | 0.22% | 2017-03-11 | 2026-05-13 |
| CVE-2017-6808 | paintballrefjosh/MaNGOSWebV4 4.0.8 is vulnerable to a reflected XSS in inc/admin/template_files/admin.faq.php (id parameter). | [email protected] | 6.1 | 0.22% | 2017-03-11 | 2026-05-13 |
| CVE-2017-6478 | paintballrefjosh/MaNGOSWebV4 before 4.0.8 is vulnerable to a reflected XSS in install/index.php (step parameter). | [email protected] | 6.1 | 3.59% | 2017-03-05 | 2026-05-13 |