Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chshcms vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2022-28552
Cscms 4.1 is vulnerable to SQL Injection. Log into the background, open the song module, create a new song, delete it to the recycle bin, and SQL injection security problems will occur when emptying the recycle bin.
Chshcms Cscms 4.1
6.8
CVSSv2
CVE-2018-16732
\upload\plugins\sys\admin\Setting.php in CScms 4.1 allows CSRF via admin.php/setting/ftp_save.
Chshcms Cscms 4.1
NA
CVE-2023-26781
SQL injection vulnerability in mccms 2.6 allows remote malicious users to run arbitrary SQL commands via Author Center ->Reader Comments ->Search.
Chshcms Mccms 2.6
NA
CVE-2023-26782
An issue discovered in mccms 2.6.1 allows remote malicious users to cause a denial of service via Backend management interface ->System Configuration->Cache Configuration->Cache security characters.
Chshcms Mccms 2.6.1
6.5
CVSSv2
CVE-2022-27365
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Dance.php_del.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27366
Cscms Music Portal System v4.2 exists to contain a blind SQL injection vulnerability via the component dance_Dance.php_hy.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27367
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Topic.php_del.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27368
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Lists.php_zhuan.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27369
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component news_News.php_hy.
Chshcms Cscms 4.2
4.9
CVSSv2
CVE-2022-27090
Cscms Music Portal System v4.2 exists to contain a redirection vulnerability via the backurl parameter.
Chshcms Cscms 4.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »