Phpkobo Ajaxnewsticker — known CVE vulnerabilities
Every CVE whose affected-product data names Phpkobo Ajaxnewsticker, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2023-41449 — CVSS 9.8 (critical): An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter.
CVE-2023-41452 — CVSS 8.8 (high): Cross Site Request Forgery vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted…
CVE-2023-41450 — CVSS 8.8 (high): An issue in phpkobo AjaxNewsTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted payload to the reque parameter.
CVE-2023-41448 — CVSS 6.1 (medium): Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted…
CVE-2023-41451 — CVSS 6.1 (medium): Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted…
CVE-2023-41445 — CVSS 6.1 (medium): Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted…
CVE-2023-41453 — CVSS 6.1 (medium): Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted…
CVE-2023-41446 — CVSS 6.1 (medium): Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted script…
CVE-2023-41447 — CVSS 6.1 (medium): Cross Site Scripting vulnerability in phpkobo AjaxNewTicker v.1.0.5 allows a remote attacker to execute arbitrary code via a crafted…