Shodan
Vulnerabilities
Vulnerable Software
Jeesns:  >> Jeesns  >> 1.4.2  Security Vulnerabilities
CVE-2020-19294
A stored cross-site scripting (XSS) vulnerability in the /article/comment component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the article comments section.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-09-09
CVE-2020-19295
A reflected cross-site scripting (XSS) vulnerability in the /weibo/topic component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML.
CVSS Score
6.1
EPSS Score
0.196
Published
2021-09-09
CVE-2020-19281
A stored cross-site scripting (XSS) vulnerability in the /manage/loginusername component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the username field.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-09-09
CVE-2020-19282
A reflected cross-site scripting (XSS) vulnerability in Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the system error message's text field.
CVSS Score
6.1
EPSS Score
0.022
Published
2021-09-09
CVE-2020-19283
A reflected cross-site scripting (XSS) vulnerability in the /newVersion component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML.
CVSS Score
6.1
EPSS Score
0.057
Published
2021-09-09
CVE-2020-19284
A stored cross-site scripting (XSS) vulnerability in the /group/comment component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the group comments text field.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-09-09
CVE-2020-19285
A stored cross-site scripting (XSS) vulnerability in the /group/apply component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Name text field.
CVSS Score
5.4
EPSS Score
0.001
Published
2021-09-09
CVE-2020-19286
A stored cross-site scripting (XSS) vulnerability in the /question/detail component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the source field of the editor.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-09-09
CVE-2020-19287
A stored cross-site scripting (XSS) vulnerability in the /group/post component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the title.
CVSS Score
5.4
EPSS Score
0.001
Published
2021-09-09
CVE-2020-19288
A stored cross-site scripting (XSS) vulnerability in the /localhost/u component of Jeesns 1.4.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in a private message.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-09-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved