Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
html-js doracms 2.1.8 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-51840
DoraCMS 2.1.8 is vulnerable to Use of Hard-coded Cryptographic Key.
Html-js Doracms 2.1.8
9.8
CVSSv3
CVE-2023-49443
DoraCMS v2.1.8 exists to re-use the same code for verification of valid usernames and passwords. This vulnerability allows malicious users to gain access to the application via a bruteforce attack.
Html-js Doracms 2.1.8
5.4
CVSSv3
CVE-2023-49444
An arbitrary file upload vulnerability in DoraCMS v2.1.8 allow malicious users to execute arbitrary code via uploading a crafted HTML or image file to the user avatar.
Html-js Doracms 2.1.8
4.8
CVSSv3
CVE-2022-25464
A stored cross-site scripting (XSS) vulnerability in the component /admin/contenttemp of DoraCMS v2.1.8 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Html-js Doracms 2.1.8
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started