Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
template cms project template cms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4901
Cross-site scripting (XSS) vulnerability in Template CMS 2.1.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the themes_editor parameter in an add_template action to admin/index.php.
Template Cms Project Template Cms
1 EDB exploit
NA
CVE-2012-4902
Multiple cross-site request forgery (CSRF) vulnerabilities in Template CMS 2.1.1 and previous versions allow remote malicious users to hijack the authentication of administrators for requests that (1) create an administrator user via an add action to admin/index.php or (2) conduc...
Template Cms Project Template Cms
1 EDB exploit
9.1
CVSSv3
CVE-2023-46886
Dreamer CMS before version 4.0.1 is vulnerable to Directory Traversal. Background template management allows arbitrary modification of the template file, allowing system sensitive files to be read.
Dreamer Cms Project Dreamer Cms
4.3
CVSSv3
CVE-2019-9610
An issue exists in OFCMS prior to 1.1.3. It has admin/cms/template/getTemplates.html?res_path=res&up_dir=../ directory traversal, related to the getTemplates function in TemplateController.java.
Ofcms Project Ofcms
6.5
CVSSv3
CVE-2019-9611
An issue exists in OFCMS prior to 1.1.3. It allows admin/cms/template/getTemplates.html?res_path=res directory traversal, with ../ in the dir parameter, to write arbitrary content (in the file_content parameter) into an arbitrary file (specified by the file_name parameter). This ...
Ofcms Project Ofcms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started