Chronoengine: >> Chronoforums Security Vulnerabilities
ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files.
CVSS Score
2.7
EPSS Score
0.001
Published
2022-01-12
ChronoForums 2.0.11 allows av Directory Traversal to read arbitrary files.
CVSS Score
5.3
EPSS Score
0.461
Published
2022-01-12
Chronoforeum 2.0.11 allows Stored XSS vulnerabilities when inserting a crafted payload into a post. If any user sees the post, the inserted XSS code is executed.
CVSS Score
6.1
EPSS Score
0.003
Published
2020-11-16