Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2021-41921
- EPSS 0.81%
- Published 28.04.2022 13:15:08
- Last modified 21.11.2024 06:26:57
novel-plus V3.6.1 allows unrestricted file uploads. Unrestricted file suffixes and contents can lead to server attacks and arbitrary code execution.
9.8
CVE-2022-24568
- EPSS 0.32%
- Published 10.02.2022 19:15:09
- Last modified 21.11.2024 06:50:40
Novel-plus v3.6.0 was discovered to be vulnerable to Server-Side Request Forgery (SSRF) via user-supplied crafted input.