Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
74cms vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2022-41472
74cmsSE v3.12.0 exists to contain a cross-site scripting (XSS) vulnerability via the component /apiadmin/notice/add. This vulnerability allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Title field.
74cms 74cmsse 3.12.0
6.5
CVSSv3
CVE-2022-41471
74cmsSE v3.12.0 allows authenticated attackers with low-level privileges to arbitrarily change the rights and credentials of the Super Administrator account.
74cms 74cmsse 3.12.0
7.5
CVSSv3
CVE-2022-33092
74cmsSE v3.5.1 exists to contain a SQL injection vulnerability via the keyword parameter at /home/job/index.
74cms 74cmsse 3.5.1
NA
CVE-2024-2561
A vulnerability, which was classified as critical, has been found in 74CMS 3.28.0. Affected by this issue is the function sendCompanyLogo of the file /controller/company/Index.php#sendCompanyLogo of the component Company Logo Handler. The manipulation of the argument imgBase64 le...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4