Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
publiccms publiccms 4.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-20914
SQL Injection vulnerability found in San Luan PublicCMS v.4.0 allows a remote malicious user to execute arbitrary code via the sql parameter.
Publiccms Publiccms 4.0
NA
CVE-2020-20915
SQL Injection vulnerability found in PublicCMS v.4.0 allows a remote malicious user to execute arbitrary code via sql parameter of the the SysSiteAdminControl.
Publiccms Publiccms 4.0
NA
CVE-2023-51252
PublicCMS 4.0 is vulnerable to Cross Site Scripting (XSS). Because files can be uploaded and online preview function is provided, pdf files and html files containing malicious code are uploaded, an XSS popup window is realized through online viewing.
Publiccms Publiccms 4.0
3.5
CVSSv2
CVE-2020-21333
Cross Site Scripting (XSS) vulnerability in PublicCMS 4.0 to get an admin cookie when the Administrator reviews submit case.
Publiccms Publiccms 4.0
7.5
CVSSv2
CVE-2021-40881
An issue in the BAT file parameters of PublicCMS v4.0 allows malicious users to execute arbitrary code.
Publiccms Publiccms 4.0
7.5
CVSSv2
CVE-2022-23389
PublicCMS v4.0 exists to contain a remote code execution (RCE) vulnerability via the cmdarray parameter.
Publiccms Publiccms 4.0
3.5
CVSSv2
CVE-2018-18927
An issue exists in PublicCMS V4.0. It allows XSS by modifying the page_list "attached" attribute (which typically has 'class="icon-globe icon-large"' in its value), as demonstrated by an 'UPDATE sys_module SET attached = "[XSS]" WHERE ...
Publiccms Publiccms 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started