RSS   Vulnerabilities for 'Social codia sms'   RSS

2022-04-08
 
CVE-2022-27348

CWE-79
 
 
Social Codia SMS v1 was discovered to contain a stored cross-site scripting (XSS) vulnerability via add_post.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Post Title text field.

 
 
CVE-2022-27349

CWE-434
 
 
Social Codia SMS v1 was discovered to contain an arbitrary file upload vulnerability via addteacher.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

 

Copyright 2024, cxsecurity.com

 

Back to Top