Jcore : Security Vulnerabilities, CVEs,
SQL injection vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to execute arbitrary SQL commands via the memberloginid cookie.
Max CVSS
7.5
EPSS Score
0.29%
Published
2012-10-22
Updated
2017-08-29
Cross-site scripting (XSS) vulnerability in admin/index.php in jCore before 1.0pre2 allows remote attackers to inject arbitrary web script or HTML via the path parameter.
Max CVSS
4.3
EPSS Score
0.62%
Published
2012-10-22
Updated
2017-08-29
2 vulnerabilities found