Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s-cms vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv3
CVE-2020-20699
A cross site scripting (XSS) vulnerability in S-CMS PHP v3.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload entered into the Copyright text box under Basic Settings.
S-cms S-cms 3.0
4.8
CVSSv3
CVE-2020-20700
A stored cross site scripting (XSS) vulnerability in /app/form_add/of S-CMS PHP v3.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload entered into the Title Entry text box.
S-cms S-cms 3.0
4.8
CVSSv3
CVE-2020-20701
A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
S-cms S-cms 3.0
6.1
CVSSv3
CVE-2019-17368
S-CMS v1.5 has XSS in tpl.php via the member/member_login.php from parameter.
S-cms S-cms 1.5
6.1
CVSSv3
CVE-2019-16312
s-cms V3.0 has XSS in index.php?type=text via the S_id parameter.
S-cms S-cms 3.0
9.8
CVSSv3
CVE-2019-10708
S-CMS PHP v1.0 has SQL injection via the 4/js/scms.php?action=unlike id parameter.
S-cms S-cms 1.0
1 Github repository
8.8
CVSSv3
CVE-2019-10237
S-CMS PHP v1.0 has a CSRF vulnerability to add a new admin user via the 4.edu.php/admin/ajax.php?type=admin&action=add&lang=0 URI, a related issue to CVE-2019-9040.
S-cms S-cms 1.0
6.1
CVSSv3
CVE-2019-9925
S-CMS PHP v1.0 has XSS in 4.edu.php via the S_id parameter.
S-cms S-cms 1.0
8.8
CVSSv3
CVE-2019-9040
S-CMS PHP v3.0 has a CSRF vulnerability to add a new admin user via the admin/ajax.php?type=admin&action=add URI, a related issue to CVE-2018-19332.
S-cms S-cms 3.0
9.8
CVSSv3
CVE-2019-6805
SQL Injection was found in S-CMS version V3.0 via the alipay/alipayapi.php O_id parameter.
S-cms S-cms 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »