Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 27 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-15250 08CMS Novel System Template mtpls.inc.php code injection 08CMSNovel System Medium 4.7 2025-12-30 13:32:11 Deep Dive
CVE-2025-6535 xxyopen/201206030 novel-plus User Management Module UserMapper.xml list sql injection xxyopennovel-plus Medium 6.3 2025-06-24 01:00:21 Deep Dive
CVE-2025-6534 xxyopen/201206030 novel-plus File FileController.java remove resource injection xxyopennovel-plus Medium 4.2 2025-06-24 00:31:05 Deep Dive
CVE-2025-6533 xxyopen/201206030 novel-plus CATCHA LoginController.java ajaxLogin authentication replay xxyopennovel-plus Medium 5.6 2025-06-24 00:00:13 Deep Dive
CVE-2025-4036 201206030 Novel Chapter AuthorController.java updateBookChapter access control 201206030Novel Medium 6.3 2025-04-28 20:00:05 Deep Dive
CVE-2025-4019 20120630 Novel-Plus GeneratorController.java genCode missing authentication 20120630Novel-Plus High 7.3 2025-04-28 12:00:08 Deep Dive
CVE-2025-4018 20120630 Novel-Plus CrawlController.java addCrawlSource missing authentication 20120630Novel-Plus Medium 5.3 2025-04-28 11:31:06 Deep Dive
CVE-2025-4017 20120630 Novel-Plus LogController.java list improper authorization 20120630Novel-Plus Medium 4.3 2025-04-28 11:00:08 Deep Dive
CVE-2025-4016 20120630 Novel-Plus LogController.java deleteIndex improper authorization 20120630Novel-Plus Medium 5.4 2025-04-28 10:31:06 Deep Dive
CVE-2025-4015 20120630 Novel-Plus SessionController.java list missing authentication 20120630Novel-Plus Medium 5.3 2025-04-28 10:00:09 Deep Dive
CVE-2025-3956 201206030 novel-cloud BookInfoMapper.xml RestResp sql injection 201206030novel-cloud Medium 6.3 2025-04-27 03:00:06 Deep Dive
CVE-2025-3856 xxyopen Novel-Plus searchByPage sql injection xxyopenNovel-Plus Medium 6.3 2025-04-22 01:00:12 Deep Dive
CVE-2025-3676 xxyopen Novel-Plus books sql injection xxyopenNovel-Plus Medium 6.3 2025-04-16 08:00:06 Deep Dive
CVE-2025-3369 xxyopen Novel-Plus list sql injection xxyopenNovel-Plus Medium 6.3 2025-04-07 13:31:05 Deep Dive
CVE-2025-1154 xxyopen Novel books sql injection xxyopenNovel Medium 6.3 2025-02-10 19:31:04 Deep Dive
CVE-2024-51788 WordPress The Novel Design Store Directory plugin <= 4.3.0 - Arbitrary File Upload vulnerability Joshua WolfeThe Novel Design Store Directory Critical 10.0 2024-11-11 05:59:26 Deep Dive
CVE-2024-0941 Novel-Plus list sql injection -Novel-Plus Medium 5.5 2024-01-26 18:31:05 Deep Dive
CVE-2024-0655 Novel-Plus list sql injection -Novel-Plus Medium 5.5 2024-01-18 01:31:04 Deep Dive
CVE-2023-7171 Novel-Plus Friendly Link FriendLinkController.java cross site scripting -Novel-Plus Low 2.4 2023-12-29 17:31:03 Deep Dive
CVE-2023-7166 Novel-Plus HTTP POST Request updateUserInfo cross site scripting -Novel-Plus Low 3.5 2023-12-29 08:31:05 Deep Dive