Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s-cms vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-18426
s-cms 3.0 allows remote malicious users to execute arbitrary PHP code by placing this code in a crafted User-agent Disallow value in the robots.php txt parameter.
S-cms S-cms 3.0
9.8
CVSSv3
CVE-2018-18427
s-cms 3.0 allows SQL Injection via the member/post.php 0_id parameter or the POST data to member/member_login.php.
S-cms S-cms 3.0
NA
CVE-2010-4771
SQL injection vulnerability to viewforum.php in S-CMS 2.5 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Matteoiammarrone S-cms 2.5
1 EDB exploit
NA
CVE-2010-4772
Cross-site scripting (XSS) vulnerability in blocks/lang.php in S-CMS 2.5 allows remote malicious users to inject arbitrary web script or HTML via the id parameter to viewforum.php.
Matteoiammarrone S-cms 2.5
1 EDB exploit
NA
CVE-2009-1502
Directory traversal vulnerability in plugin.php in S-Cms 1.1 Stable and 1.5.2 allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the page parameter.
Matteoiammarrone S-cms 1.5.2
Matteoiammarrone S-cms 1.1
1 EDB exploit
NA
CVE-2009-0864
S-Cms 1.1 Stable allows remote malicious users to bypass authentication and obtain administrative access via an OK value for the login cookie.
Matteoiammarrone S-cms 1.1
1 EDB exploit
NA
CVE-2009-0863
SQL injection vulnerability in admin/delete_page.php in S-Cms 1.1 Stable allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Matteoiammarrone S-cms 1.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5