Seo_panel - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Seo_panel
(Seopanel)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	20

Date	Id	Summary	Products	Score	Patch	Annotated
2021-03-18	CVE-2021-28420	A cross-site scripting (XSS) issue in Seo Panel 4.8.0 allows remote attackers to inject JavaScript via alerts.php and the "from_time" parameter.	Seo_panel	4.8
2021-03-25	CVE-2021-29008	A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote attackers to inject JavaScript via webmaster-tools.php in the "to_time" parameter.	Seo_panel	4.8
2021-03-25	CVE-2021-29009	A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php in the "type" parameter.	Seo_panel	4.8
2021-03-25	CVE-2021-29010	A cross-site scripting (XSS) issue in SEO Panel 4.8.0 allows remote attackers to inject JavaScript via archive.php in the "report_type" parameter.	Seo_panel	4.8
2021-11-05	CVE-2021-39413	Multiple Cross Site Scripting (XSS) vulnerabilities exits in SEO Panel v4.8.0 via the (1) to_time parameter in (a) backlinks.php, (b) analytics.php, (c) log.php, (d) overview.php, (e) pagespeed.php, (f) rank.php, (g) review.php, (h) saturationchecker.php, (i) social_media.php, and (j) reports.php; the (2) from_time parameter in (a) backlinks.php, (b) analytics.php, (c) log.php, (d) overview.php, (e) pagespeed.php, (f) rank.php, (g) review.php, (h) saturationchecker.php, (i) social_media.php,...	Seo_panel	6.1
2020-03-02	CVE-2018-14384	The Website Manager module in SEO Panel 3.13.0 and earlier is affected by a stored Cross-Site Scripting (XSS) vulnerability, allowing remote authenticated attackers to inject arbitrary web script or HTML via the websites.php name parameter.	Seo_panel	N/A
2017-08-28	CVE-2017-10839	SQL injection vulnerability in the SEO Panel prior to version 3.11.0 allows authenticated attackers to execute arbitrary SQL commands via unspecified vectors.	Seo_panel	8.8
2017-08-28	CVE-2017-10838	Cross-site scripting vulnerability in SEO Panel prior to version 3.11.0 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.	Seo_panel	6.1
2014-05-20	CVE-2014-1855	Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel before 3.5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) capcheck parameter to directories.php or (2) keyword parameter to proxy.php.	Seo_panel	N/A
2015-01-13	CVE-2014-100024	Cross-site scripting (XSS) vulnerability in Seo Panel before 3.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	Seo_panel	N/A