Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s-cms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-51048
S-CMS v5.0 exists to contain a SQL injection vulnerability via the A_newsauth parameter at /admin/ajax.php.
S-cms S-cms 5.0
NA
CVE-2023-51049
S-CMS v5.0 exists to contain a SQL injection vulnerability via the A_bbsauth parameter at /admin/ajax.php.
S-cms S-cms 5.0
3.5
CVSSv2
CVE-2020-19046
Cross Site Scripting (XSS) in S-CMS v1.0 allows remote malicious users to execute arbitrary code via the component '/admin/tpl.php?page='.
S-cms S-cms 1.0
4.3
CVSSv2
CVE-2019-9925
S-CMS PHP v1.0 has XSS in 4.edu.php via the S_id parameter.
S-cms S-cms 1.0
3.5
CVSSv2
CVE-2020-20701
A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
S-cms S-cms 3.0
NA
CVE-2023-51051
S-CMS v5.0 exists to contain a SQL injection vulnerability via the A_textauth parameter at /admin/ajax.php.
S-cms S-cms 5.0
NA
CVE-2023-51052
S-CMS v5.0 exists to contain a SQL injection vulnerability via the A_formauth parameter at /admin/ajax.php.
S-cms S-cms 5.0
6.8
CVSSv2
CVE-2019-10237
S-CMS PHP v1.0 has a CSRF vulnerability to add a new admin user via the 4.edu.php/admin/ajax.php?type=admin&action=add&lang=0 URI, a related issue to CVE-2019-9040.
S-cms S-cms 1.0
4.3
CVSSv2
CVE-2019-16312
s-cms V3.0 has XSS in index.php?type=text via the S_id parameter.
S-cms S-cms 3.0
5
CVSSv2
CVE-2018-19331
An issue exists in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter.
S-cms S-cms 1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »