Every CVE whose affected-product data names Csphere Clansphere, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2012-10034 — CVSS 7.5 (high): ClanSphere 2011.3 is vulnerable to a local file inclusion (LFI) flaw due to improper handling of the cs_lang cookie parameter. The…
CVE-2010-1865 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in ClanSphere 2009.0.3 and earlier allow remote attackers to execute arbitrary SQL commands via (1)…
CVE-2022-43119 — CVSS 6.1 (medium): A cross-site scripting (XSS) vulnerability in Clansphere CMS v2011.4 allows attackers to execute arbitrary web scripts or HTML via a…
CVE-2011-3714 — CVSS 5.0 (medium): ClanSphere 2010.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the…
CVE-2014-100010 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in ClanSphere 2011.4 allows remote attackers to inject arbitrary web script or HTML via the where…