Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2021-25294 | 10.0 |
OpenCATS through 0.9.5-3 unsafely deserializes index.php?m=activity requests, leading to remote code execution. This occurs because lib/DataGrid.php calls unserialize for the parametersactivity:ActivityDataGrid parameter. The PHP object injection exp
|
26-01-2021 - 21:44 | 18-01-2021 - 06:15 | |
CVE-2021-25295 | 4.3 |
OpenCATS through 0.9.5-3 has multiple Cross-site Scripting (XSS) issues.
|
26-01-2021 - 21:36 | 18-01-2021 - 06:15 |