Shodan
Vulnerabilities
Vulnerable Software
Seopanel:  Security Vulnerabilities
CVE-2021-29009
A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php in the "type" parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-03-25
CVE-2021-29010
A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php in the "report_type" parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-03-25
CVE-2021-28417
A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php and the "search_name" parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-03-18
CVE-2021-28418
A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via settings.php and the "category" parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-03-18
CVE-2021-28419
The "order_col" parameter in archive.php of SEO Panel 4.8.0 is vulnerable to time-based blind SQL injection, which leads to the ability to retrieve all databases.
CVSS Score
7.2
EPSS Score
0.092
Published
2021-03-18
CVE-2021-28420
A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via alerts.php and the "from_time" parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-03-18
CVE-2021-3002
Seo Panel 4.8.0 allows reflected XSS via the seo/seopanel/login.php?sec=forgot email parameter.
CVSS Score
6.1
EPSS Score
0.304
Published
2021-01-01
CVE-2020-35930
Seo Panel 4.8.0 allows stored XSS by an Authenticated User via the url parameter, as demonstrated by the seo/seopanel/websites.php URI.
CVSS Score
5.4
EPSS Score
0.004
Published
2020-12-31
CVE-2018-14384
The Website Manager module in SEO Panel 3.13.0 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability, allowing remote authenticated attackers to inject arbitrary web script or HTML via the websites.php name parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2020-03-02
CVE-2017-10838
Cross-site scripting vulnerability in SEO Panel prior to version 3.11.0 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-08-29


Products
Pricing
Contact Us

Shodan ® - All rights reserved