本页列出影响 globaldatingsoftware premiumdatingscript 的已公开 CVE 漏洞(通过 NVD CPE 关联)。每行包含严重程度评分、摘要与发布日期,便于识别与分析安全问题。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2021-41697 | A reflected Cross Site Scripting (XSS) vulnerability exists in Premiumdatingscript 4.2.7.7 via the aerror_description parameter in assets/sources/instagram.php script. | [email protected] | 6.1 | 0.23% | 2021-12-09 | 2024-11-21 |
| CVE-2021-41696 | An authentication bypass (account takeover) vulnerability exists in Premiumdatingscript 4.2.7.7 due to a weak password reset mechanism in requests\user.php. | [email protected] | 6.5 | 0.17% | 2021-12-09 | 2024-11-21 |
| CVE-2021-41695 | An SQL Injection vulnerability exists in Premiumdatingscript 4.2.7.7 via the ip parameter in connect.php. . | [email protected] | 9.8 | 0.25% | 2021-12-09 | 2024-11-21 |
| CVE-2021-41694 | An Incorrect Access Control vulnerability exists in Premiumdatingscript 4.2.7.7 via the password change procedure in requests\user.php. | [email protected] | 9.8 | 0.35% | 2021-12-09 | 2024-11-21 |