Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
chshcms vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2019-6779
Cscms 4.1.8 allows admin.php/links/save CSRF to add, modify, or delete friend links.
Chshcms Cscms 4.1.8
7.5
CVSSv2
CVE-2018-16731
CScms 4.1 allows arbitrary file upload by (for example) adding the php extension to the default filetype list (gif, jpg, png), and then providing a .php pathname within fileurl JSON data.
Chshcms Cscms 4.1
4.9
CVSSv2
CVE-2022-27090
Cscms Music Portal System v4.2 exists to contain a redirection vulnerability via the backurl parameter.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27365
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Dance.php_del.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27366
Cscms Music Portal System v4.2 exists to contain a blind SQL injection vulnerability via the component dance_Dance.php_hy.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27367
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component dance_Topic.php_del.
Chshcms Cscms 4.2
6.5
CVSSv2
CVE-2022-27369
Cscms Music Portal System v4.2 exists to contain a SQL injection vulnerability via the component news_News.php_hy.
Chshcms Cscms 4.2
7.5
CVSSv2
CVE-2022-29660
CSCMS Music Portal System v4.2 exists to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/pic/del.
Chshcms Cscms Music Portal System 4.2
6.5
CVSSv2
CVE-2022-29661
CSCMS Music Portal System v4.2 exists to contain a blind SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/save.
Chshcms Cscms Music Portal System 4.2
6.5
CVSSv2
CVE-2022-29669
CSCMS Music Portal System v4.2 exists to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/lists/zhuan.
Chshcms Cscms Music Portal System 4.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »