Jcore : Security vulnerabilities, CVEs

Copy

CVE-2012-4232

SQL injection vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to execute arbitrary SQL commands via the memberloginid cookie.

Max CVSS

7.5

EPSS Score

0.29%

Published

2012-10-22

Updated

2017-08-29

CVE-2012-4231

Cross-site scripting (XSS) vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to inject arbitrary web script or HTML via the path parameter.

Max CVSS

4.3

EPSS Score

0.62%

Published

2012-10-22

Updated

2017-08-29

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!