Filtered by vendor Wang.market Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-6886 1 Wang.market 1 Wangmarket 2024-11-21 4.7 Medium
A vulnerability was found in xnx3 wangmarket 6.1. It has been rated as critical. Affected by this issue is some unknown functionality of the component Role Management Page. The manipulation leads to code injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-248246 is the identifier assigned to this vulnerability.
CVE-2023-26813 1 Wang.market 1 Wangmarket Cms 2024-11-21 9.8 Critical
SQL injection vulnerability in com.xnx3.wangmarket.plugin.dataDictionary.controller.DataDictionaryPluginController.java in wangmarket CMS 4.10 allows remote attackers to run arbitrary SQL commands via the TableName parameter to /plugin/dataDictionary/tableView.do.