Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chshcms vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-28552
Cscms 4.1 is vulnerable to SQL Injection. Log into the background, open the song module, create a new song, delete it to the recycle bin, and SQL injection security problems will occur when emptying the recycle bin.
Chshcms Cscms 4.1
8.8
CVSSv3
CVE-2018-16732
\upload\plugins\sys\admin\Setting.php in CScms 4.1 allows CSRF via admin.php/setting/ftp_save.
Chshcms Cscms 4.1
9.8
CVSSv3
CVE-2023-26781
SQL injection vulnerability in mccms 2.6 allows remote malicious users to run arbitrary SQL commands via Author Center ->Reader Comments ->Search.
Chshcms Mccms 2.6
6.5
CVSSv3
CVE-2023-26782
An issue discovered in mccms 2.6.1 allows remote malicious users to cause a denial of service via Backend management interface ->System Configuration->Cache Configuration->Cache security characters.
Chshcms Mccms 2.6.1
7.2
CVSSv3
CVE-2022-27365
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Dance.php_del.
Chshcms Cscms 4.2
7.2
CVSSv3
CVE-2022-27366
Cscms Music Portal System v4.2 exists to contain a blind SQL injection vulnerability via the component dance_Dance.php_hy.
Chshcms Cscms 4.2
7.2
CVSSv3
CVE-2022-27367
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Topic.php_del.
Chshcms Cscms 4.2
7.2
CVSSv3
CVE-2022-27368
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Lists.php_zhuan.
Chshcms Cscms 4.2
7.2
CVSSv3
CVE-2022-27369
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component news_News.php_hy.
Chshcms Cscms 4.2
5.4
CVSSv3
CVE-2022-27090
Cscms Music Portal System v4.2 exists to contain a redirection vulnerability via the backurl parameter.
Chshcms Cscms 4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »