CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Xiao5ucompany Project: Security Vulnerabilities

CVE-2018-14960

Xiao5uCompany 1.7 has CSRF via admin/Admin.asp.

CVSS Score

8.8

EPSS Score

0.002

Published

2018-08-06

CVE-2018-14527

Feedback.asp in Xiao5uCompany 1.7 has XSS because the XSS protection mechanism in Safe.asp is insufficient (for example, it considers SCRIPT and IMG elements, but does not consider VIDEO elements).

CVSS Score

6.1

EPSS Score

0.002

Published

2018-07-23

Page 1

Vulnerabilities

Vulnerable Software

Xiao5ucompany Project: Security Vulnerabilities

Products

Pricing

Contact Us