Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
phpwcms phpwcms 1.8.9 vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2017-15872
phpwcms 1.8.9 has XSS in include/inc_tmpl/admin.edituser.tmpl.php and include/inc_tmpl/admin.newuser.tmpl.php via the username (aka new_login) field.
Phpwcms Phpwcms 1.8.9
5.3
CVSSv3
CVE-2018-12990
phpwcms 1.8.9 allows remote malicious users to discover the installation path via an invalid csrf_token_value field.
Phpwcms Phpwcms 1.8.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started