Filtered by vendor Kujirahand
Subscriptions
Total
8 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-5612 | 1 Kujirahand | 1 Konawiki | 2024-08-04 | 6.1 Medium |
| Cross-site scripting vulnerability in KonaWiki 2.2.0 and earlier allows remote attackers to execute an arbitrary script via a specially crafted URL. | ||||
| CVE-2020-5613 | 1 Kujirahand | 1 Konawiki | 2024-08-04 | 6.1 Medium |
| Cross-site scripting vulnerability in KonaWiki 3.1.0 and earlier allows remote attackers to execute an arbitrary script via a specially crafted URL. | ||||
| CVE-2020-5614 | 1 Kujirahand | 1 Konawiki | 2024-08-04 | 5.3 Medium |
| Directory traversal vulnerability in KonaWiki 3.1.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors. | ||||
| CVE-2021-20721 | 1 Kujirahand | 1 Konawiki | 2024-08-03 | 9.8 Critical |
| KonaWiki2 versions prior to 2.2.4 allows a remote attacker to upload arbitrary files via unspecified vectors. If the file contains PHP scripts, arbitrary code may be executed. | ||||
| CVE-2021-20720 | 1 Kujirahand | 1 Konawiki | 2024-08-03 | 9.8 Critical |
| SQL injection vulnerability in the KonaWiki2 versions prior to 2.2.4 allows remote attackers to execute arbitrary SQL commands and to obtain/alter the information stored in the database via unspecified vectors. | ||||
| CVE-2022-42496 | 1 Kujirahand | 1 Nadesiko3 | 2024-08-03 | 9.8 Critical |
| OS command injection vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to obtain appkey of the product and execute an arbitrary OS command on the product. | ||||
| CVE-2022-41777 | 1 Kujirahand | 1 Nadesiko3 | 2024-08-03 | 7.5 High |
| Improper check or handling of exceptional conditions vulnerability in Nako3edit, editor component of nadesiko3 (PC Version) v3.3.74 and earlier allows a remote attacker to inject an invalid value to decodeURIComponent of nako3edit, which may lead the server to crash. | ||||
| CVE-2022-41642 | 1 Kujirahand | 1 Nadesiko3 | 2024-08-03 | 9.8 Critical |
| OS command injection vulnerability in Nadesiko3 (PC Version) v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product. | ||||
Page 1 of 1.