Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Chronoforums
(Chronoengine)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 3 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-11-16 | CVE-2020-27459 | Chronoforeum 2.0.11 allows Stored XSS vulnerabilities when inserting a crafted payload into a post. If any user sees the post, the inserted XSS code is executed. | Chronoforums | 6.1 | ||
| 2022-01-12 | CVE-2021-28376 | ChronoForms 7.0.7 allows fname Directory Traversal to read arbitrary files. | Chronoforums | 2.7 | ||
| 2022-01-12 | CVE-2021-28377 | ChronoForums 2.0.11 allows av Directory Traversal to read arbitrary files. | Chronoforums | 5.3 |