opensns CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

opensns vulnerability overview

Aggregates CVE and security vulnerability intelligence across all opensns-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Disclosed issues often relate to vendor risk sql injection; exposure may include vendor impact data exposure in vendor surface production workloads and vendor surface software deployment contexts.

Vulnerability distribution trend (last 24 months)

Showing 13 of 3 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2020-21726 OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php via the cid parameter. [email protected] 9.8 0.25% 2021-10-07 2024-11-21
CVE-2020-21725 OpenSNS v6.1.0 contains a blind SQL injection vulnerability in /Controller/ChinaCityController.class.php via the pid parameter. [email protected] 9.8 0.25% 2021-10-07 2024-11-21
CVE-2019-14266 OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php. [email protected] 8.8 0.24% 2019-07-25 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence