Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anchorcms anchor cms vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2022-25576
Anchor CMS v0.12.7 exists to contain a Cross-Site Request Forgery (CSRF) via the component anchor/routes/posts.php. This vulnerability allows malicious users to arbitrarily delete posts.
Anchorcms Anchor Cms 0.12.7
3.5
CVSSv2
CVE-2021-46253
A cross-site scripting (XSS) vulnerability in the Create Post function of Anchor CMS v0.12.7 allows malicious users to execute arbitrary web scripts or HTML.
Anchorcms Anchor Cms 0.12.7
4.3
CVSSv2
CVE-2021-44116
Cross Site Scripting (XSS) vulnerability exits in Anchor CMS <=0.12.7 in posts.php. Attackers can use the posts column to upload the title and content containing malicious code to achieve the purpose of obtaining the administrator cookie, thereby achieving other malicious oper...
Anchorcms Anchor Cms
6.8
CVSSv2
CVE-2020-23342
A CSRF vulnerability exists in Anchor CMS 0.12.7 anchor/views/users/edit.php that can change the Delete admin users.
Anchorcms Anchor Cms 0.12.7
1 Github repository
5
CVSSv2
CVE-2018-7251
An issue exists in config/error.php in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many connections") has occurred.
Anchorcms Anchor 0.12.3
1 EDB exploit
4.3
CVSSv2
CVE-2015-5060
Cross-site scripting (XSS) vulnerability in anchor-cms prior to 0.9-dev.
Anchorcms Anchor Cms
7.5
CVSSv2
CVE-2015-5687
system/session/drivers/cookie.php in Anchor CMS 0.9.x allows remote malicious users to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in a cookie.
Anchorcms Anchor Cms 0.9.3
Anchorcms Anchor Cms 0.9.1
Anchorcms Anchor Cms 0.9.2
4.3
CVSSv2
CVE-2014-9182
models/comment.php in Anchor CMS 0.9.2 and previous versions allows remote malicious users to inject arbitrary headers into mail messages via a crafted Host: header.
Anchorcms Anchor Cms 0.9.1
Anchorcms Anchor Cms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started