Every CVE whose affected-product data names Neocrome Seditio, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2006-6344 — CVSS 7.5 (high): Multiple unspecified vulnerabilities in Neocrome Seditio 1.10 and earlier have unknown impact and attack vectors related to (1)…
CVE-2006-6177 — CVSS 7.5 (high): SQL injection vulnerability in system/core/users/users.profile.inc.php in Neocrome Seditio 1.10 and earlier allows remote authenticated…
CVE-2009-1411 — CVSS 7.5 (high): SQL injection vulnerability in events/inc/events.inc.php in the Events plugin for Seditio CMS 1.0 allows remote attackers to execute…
CVE-2007-6202 — CVSS 6.8 (medium): SQL injection vulnerability in plugins/search/search.php in Neocrome Seditio CMS 121 and earlier allows remote attackers to execute…
CVE-2006-6577 — CVSS 6.8 (medium): SQL injection vulnerability in polls.php in Neocrome Land Down Under (LDU) 8.x and earlier allows remote attackers to execute arbitrary SQL…
CVE-2006-6343 — CVSS 6.8 (medium): SQL injection vulnerability in polls.php in Neocrome Seditio 1.10 and earlier allows remote attackers to execute arbitrary SQL commands via…
CVE-2007-4057 — CVSS 6.5 (medium): Unrestricted file upload vulnerability in pfs.php in Neocrome Seditio 121 and earlier allows remote authenticated users to upload arbitrary…
CVE-2012-5916 — CVSS 5.0 (medium): Neocrome Seditio build 161 allows remote attackers to obtain sensitive information via a direct request to (1) docs/new/seditio-createnew-16…
CVE-2012-5915 — CVSS 5.0 (medium): Neocrome Seditio build 161 and earlier allows remote attackers to obtain sensitive information via direct request to (1) view.php, (2)…
CVE-2006-2634 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Neocrome Land Down Under (LDU) in Neocrome Seditio 102 allows remote attackers to inject…
CVE-2012-5914 — CVSS 2.6 (low): Multiple cross-site scripting (XSS) vulnerabilities in the sed_import function in system/functions.php in Neocrome Seditio build 160 and…