Vulmon Recent Vulnerabilities Trends Blog About Contact

victor cms vulnerabilities and exploits

(subscribe to this query)

4.3
CVSSv2
CVE-2020-15599
Victor CMS through 2019-02-28 allows XSS via the register.php user_firstname or user_lastname field....
Victor Cms ProjectVictor Cms
3.5
CVSSv2
CVE-2018-16775
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the site name in the "Categories" menu....
Victor Cms ProjectVictor Cms
4.3
CVSSv2
CVE-2020-13427
Victor CMS 1.0 has Persistent XSS in admin/users.php?source=add_user via the user_name, user_firstname, or user_lastname parameter....
Victorcms ProjectVictorcms
4.3
CVSSv2
CVE-2018-15603
An issue was discovered in Victor CMS through 2018-05-10. There is XSS via the Author field of the "Leave a Comment" screen....
Victor Cms ProjectVictor Cms
6.5
CVSSv2
CVE-2019-13978
Ovidentia 8.4.3 has SQL Injection via the id parameter in an index.php?tg=delegat&idx=mem request....
Ovidentia
3.5
CVSSv2
CVE-2019-13977
index.php in Ovidentia 8.4.3 has XSS via tg=groups, tg=maildoms&idx=create&userid=0&bgrp=y, tg=delegat, tg=site&idx=create, tg=site&item=4, tg=admdir&idx=mdb&id=1, tg=notes&idx=Create, tg=admfaqs&idx=Add, or tg=admoc&idx=addoc&item=....
Ovidentia
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
streaming enginedeserializationCVE-2019-11286local file inclusionCVE-2020-5617CVE-2020-3460CVE-2020-13379extremenetworksCVE-2020-15870code injectiondaviewindyCVE-2020-5413simpleledger