White Shark Systems Project White Shark Systems — known CVE vulnerabilities
Every CVE whose affected-product data names White Shark Systems Project White Shark Systems, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2020-20466 — CVSS 9.8 (critical): White Shark System (WSS) 1.3.2 is vulnerable to unauthorized access via user_edit_password.php, remote attackers can modify the password of…
CVE-2020-20471 — CVSS 8.8 (high): White Shark System (WSS) 1.3.2 has an unauthorized access vulnerability in default_user_edit.php, remote attackers can exploit this…
CVE-2020-20474 — CVSS 7.5 (high): White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the default_task_edituser.php files failing…
CVE-2020-20469 — CVSS 7.5 (high): White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the log_edit.php files failing to filter the…
CVE-2020-20473 — CVSS 7.5 (high): White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the control_task.php, control_project.php…
CVE-2020-20468 — CVSS 6.5 (medium): White Shark System (WSS) 1.3.2 is vulnerable to CSRF. Attackers can use the user_edit_password.php file to modify the user password.
CVE-2020-20467 — CVSS 6.5 (medium): White Shark System (WSS) 1.3.2 is vulnerable to sensitive information disclosure via default_task_add.php, remote attackers can exploit the…
CVE-2020-20472 — CVSS 5.3 (medium): White Shark System (WSS) 1.3.2 has a sensitive information disclosure vulnerability. The if_get_addbook.php file does not have an…