Aggregates CVE and security vulnerability intelligence across all whatsns-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk sql injection and related problems; some flaws may lead to vendor impact data exposure, affecting vendor surface production workloads and vendor surface software deployment scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-18013 | SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?admin_banned/add.htm. | [email protected] | 9.8 | 0.51% | 2021-07-30 | 2024-11-21 |
| CVE-2019-11452 | whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection. | [email protected] | 7.2 | 0.27% | 2019-04-22 | 2024-11-21 |
| CVE-2019-11451 | whatsns 4.0 allows index.php?inform/add.html qid SQL injection. | [email protected] | 7.2 | 0.27% | 2019-04-22 | 2024-11-21 |
| CVE-2019-11450 | whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection. | [email protected] | 9.8 | 0.26% | 2019-04-22 | 2024-11-21 |