Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html-js doracms 2.1.8 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-49443
DoraCMS v2.1.8 exists to re-use the same code for verification of valid usernames and passwords. This vulnerability allows malicious users to gain access to the application via a bruteforce attack.
Html-js Doracms 2.1.8
5.4
CVSSv3
CVE-2023-49444
An arbitrary file upload vulnerability in DoraCMS v2.1.8 allow malicious users to execute arbitrary code via uploading a crafted HTML or image file to the user avatar.
Html-js Doracms 2.1.8
9.8
CVSSv3
CVE-2023-51840
DoraCMS 2.1.8 is vulnerable to Use of Hard-coded Cryptographic Key.
Html-js Doracms 2.1.8
4.8
CVSSv3
CVE-2022-25464
A stored cross-site scripting (XSS) vulnerability in the component /admin/contenttemp of DoraCMS v2.1.8 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Html-js Doracms 2.1.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started