Openconstructor Project Openconstructor — known CVE vulnerabilities
Every CVE whose affected-product data names Openconstructor Project Openconstructor, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2012-3873 — CVSS 6.5 (medium): Multiple SQL injection vulnerabilities in Open Constructor 3.12.0 allow remote authenticated users to execute arbitrary SQL commands via…
CVE-2012-3872 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Open Constructor 3.12.0 allow remote attackers to inject arbitrary web script or…
CVE-2012-3870 — CVSS 3.5 (low): Multiple cross-site scripting (XSS) vulnerabilities in objects/createobject.php in Open Constructor 3.12.0 allow remote authenticated users…
CVE-2012-3871 — CVSS 3.5 (low): Cross-site scripting (XSS) vulnerability in data/hybrid/i_hybrid.php in Open Constructor 3.12.0 allows remote authenticated users to inject…