CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Chronoengine: >> Chronoforums >> 2.0.11 Security Vulnerabilities

CVE-2021-28377

ChronoForums 2.0.11 allows av Directory Traversal to read arbitrary files.

CVSS Score

5.3

EPSS Score

0.461

Published

2022-01-12

CVE-2020-27459

Chronoforeum 2.0.11 allows Stored XSS vulnerabilities when inserting a crafted payload into a post. If any user sees the post, the inserted XSS code is executed.

CVSS Score

6.1

EPSS Score

0.003

Published

2020-11-16

Page 1

Vulnerabilities

Vulnerable Software

Chronoengine: >> Chronoforums >> 2.0.11 Security Vulnerabilities

Products

Pricing

Contact Us