OpenCVE

Filtered by vendor Xiaohuanxiong Project Subscriptions

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-26268	1 Xiaohuanxiong Project	1 Xiaohuanxiong	2024-11-21	9.8 Critical
Xiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php.
CVE-2021-43737	1 Xiaohuanxiong Project	1 Xiaohuanxiong Cms	2024-11-21	6.5 Medium
An issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password.

Page 1 of 1.