Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adaptcms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-5108
Cross-site scripting (XSS) vulnerability in config.php in AdaptCMS 2.0.0 and 2.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Adaptcms Adaptcms 2.0.0
Adaptcms Adaptcms 2.0.1
1 EDB exploit
NA
CVE-2009-0526
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AdaptCMS Lite 1.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) url and (2) acuparam parameters, and (3) the URI.
Adaptcms Adaptcms 1.4
1 EDB exploit
NA
CVE-2009-0527
PHP remote file inclusion vulnerability in plugins/rss_importer_functions.php in AdaptCMS Lite 1.4 allows remote malicious users to execute arbitrary PHP code via a URL in the sitepath parameter.
Adaptcms Adaptcms 1.4
1 EDB exploit
NA
CVE-2008-4524
SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Adaptcms Adaptcms 1.3
1 EDB exploit
NA
CVE-2011-3698
AdaptCMS 2.0.2 Beta allows remote malicious users to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by inc/poll_vote.php and certain other files.
Adaptcms Adaptcms 2.0.2
NA
CVE-2015-1059
Unrestricted file upload vulnerability in admin/files/add in AdaptCMS 3.0.3 allows remote authenticated users to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in /app/webroot/uploads.
Insanevisions Adaptcms 3.0.3
1 EDB exploit
NA
CVE-2015-1060
Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer header.
Insanevisions Adaptcms 3.0.3
1 EDB exploit
NA
CVE-2015-1058
Multiple cross-site scripting (XSS) vulnerabilities in AdaptCMS 3.0.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) data[Category][title] parameter to admin/categories/add, (2) data[Field][title] parameter to admin/fields/ajax_fields/, (3) name p...
Insanevisions Adaptcms 3.0.3
1 EDB exploit
NA
CVE-2010-2618
PHP remote file inclusion vulnerability in inc/smarty/libs/init.php in AdaptCMS 2.0.0 Beta, when register_globals is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the sitepath parameter. NOTE: it was later reported that 2.0.1 is also affected.
Insanevisions Adapcms 2.0.0
Insanevisions Adapcms 2.0.1
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started