CVE-2023-33559 — CVSS 8.8 (high): A local file inclusion vulnerability via the lang parameter in OcoMon before v4.0.1 allows attackers to execute arbitrary code by supplying…
CVE-2022-40798 — CVSS 7.5 (high): OcoMon 4.0RC1 is vulnerable to Incorrect Access Control. Through a request the user can obtain the real email, sending the same request…
CVE-2023-33558 — CVSS 7.5 (high): An information disclosure vulnerability in the component users-grid-data.php of Ocomon before v4.0.1 allows attackers to obtain sensitive…