Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s-cms vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-9925
S-CMS PHP v1.0 has XSS in 4.edu.php via the S_id parameter.
S-cms S-cms 1.0
6.8
CVSSv2
CVE-2019-10237
S-CMS PHP v1.0 has a CSRF vulnerability to add a new admin user via the 4.edu.php/admin/ajax.php?type=admin&action=add&lang=0 URI, a related issue to CVE-2019-9040.
S-cms S-cms 1.0
4.3
CVSSv2
CVE-2018-20476
An issue exists in S-CMS 3.0. It allows XSS via the admin/demo.php T_id parameter.
S-cms S-cms 3.0
7.5
CVSSv2
CVE-2018-20477
An issue exists in S-CMS 3.0. It allows SQL Injection via the bank/callback1.php P_no field.
S-cms S-cms 3.0
7.5
CVSSv2
CVE-2018-20479
An issue exists in S-CMS 1.0. It allows SQL Injection via the wap_index.php?type=newsinfo S_id parameter.
S-cms S-cms 1.0
NA
CVE-2023-29962
S-CMS v5.0 exists to contain an arbitrary file read vulnerability.
S-cms S-cms 5.0
NA
CVE-2023-29963
S-CMS v5.0 exists to contain an authenticated remote code execution (RCE) vulnerability via the component /admin/ajax.php.
S-cms S-cms 5.0
4.3
CVSSv2
CVE-2019-17368
S-CMS v1.5 has XSS in tpl.php via the member/member_login.php from parameter.
S-cms S-cms 1.5
4.3
CVSSv2
CVE-2020-20425
S-CMS Government Station Building System v5.0 contains a cross-site scripting (XSS) vulnerability in the search function.
S-cms S-cms 5.0
4.3
CVSSv2
CVE-2018-19145
An issue exists in S-CMS v1.5. There is an XSS vulnerability in search.php via the keyword parameter.
S-cms S-cms 1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »