Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
1234n minicms 1.10 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2018-9092
There is a CSRF vulnerability in mc-admin/conf.php in MiniCMS 1.10 that can change the administrator account password.
1234n Minicms 1.10
1 EDB exploit
4.3
CVSSv2
CVE-2020-17999
Cross Site Scripting (XSS) in MiniCMS v1.10 allows remote malicious users to execute arbitrary code by injecting commands via a crafted HTTP request to the component "/mc-admin/post-edit.php".
1234n Minicms 1.10
5
CVSSv2
CVE-2020-36051
Directory traversal vulnerability in page_edit.php in MiniCMS V1.10 allows remote malicious users to read arbitrary files via the state parameter.
1234n Minicms 1.10
4.3
CVSSv2
CVE-2019-13186
In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the tags box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, and CVE-2018-20520.
1234n Minicms 1.10
5
CVSSv2
CVE-2018-18890
MiniCMS 1.10 allows full path disclosure via /mc-admin/post.php?state=delete&delete= with an invalid filename.
1234n Minicms 1.10
7.5
CVSSv2
CVE-2018-18892
MiniCMS 1.10 allows execution of arbitrary PHP code via the install.php sitename parameter, which affects the site_name field in mc_conf.php.
1234n Minicms 1.10
4.3
CVSSv2
CVE-2018-15899
An issue exists in MiniCMS 1.10. There is a post.php?date= XSS vulnerability.
1234n Minicms 1.10
4.3
CVSSv2
CVE-2018-16233
MiniCMS V1.10 has XSS via the mc-admin/post-edit.php tags parameter.
1234n Minicms 1.10
3.5
CVSSv2
CVE-2018-10227
MiniCMS v1.10 has XSS via the mc-admin/conf.php site_link parameter.
1234n Minicms 1.10
4.3
CVSSv2
CVE-2018-10296
MiniCMS V1.10 has XSS via the mc-admin/post-edit.php title parameter.
1234n Minicms 1.10
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »