Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mycms mycms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-3586
Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and previous versions allow remote malicious users to inject arbitrary PHP code into (1) a _score.txt file via the score parameter, or (2) a _setby.txt file via a login cookie, which is then included by games.ph...
Mycms Mycms
1 EDB exploit
7.5
CVSSv2
CVE-2007-3585
PHP remote file inclusion vulnerability in games.php in MyCMS 0.9.8 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the id parameter.
Mycms Mycms
1 EDB exploit
7.5
CVSSv2
CVE-2007-3587
MyCMS 0.9.8 and previous versions allows remote malicious users to gain privileges via the admin cookie parameter, as demonstrated by a post to admin/settings.php that injects PHP code into settings.inc, which can then be executed via a direct request to index.php.
Mycms Mycms
1 EDB exploit
NA
CVE-2022-4892
A vulnerability was found in MyCMS. It has been classified as problematic. This affects the function build_view of the file lib/gener/view.php of the component Visitors Module. The manipulation of the argument original/converted leads to cross site scripting. It is possible to in...
Mycms Project Mycms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started