Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html-js doracms 2.1.8 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-51840
DoraCMS 2.1.8 is vulnerable to Use of Hard-coded Cryptographic Key.
Html-js Doracms 2.1.8
4.8
CVSSv3
CVE-2022-25464
A stored cross-site scripting (XSS) vulnerability in the component /admin/contenttemp of DoraCMS v2.1.8 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Html-js Doracms 2.1.8
9.8
CVSSv3
CVE-2023-49443
DoraCMS v2.1.8 exists to re-use the same code for verification of valid usernames and passwords. This vulnerability allows malicious users to gain access to the application via a bruteforce attack.
Html-js Doracms 2.1.8
5.4
CVSSv3
CVE-2023-49444
An arbitrary file upload vulnerability in DoraCMS v2.1.8 allow malicious users to execute arbitrary code via uploading a crafted HTML or image file to the user avatar.
Html-js Doracms 2.1.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started