Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
victor cms vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-35597
Victor CMS 1.0 is vulnerable to SQL injection via c_id parameter of admin_edit_comment.php, p_id parameter of admin_edit_post.php, u_id parameter of admin_edit_user.php, and edit parameter of admin_update_categories.php.
Victor Cms Project Victor Cms 1.0
8.8
CVSSv3
CVE-2022-23873
Victor CMS v1.0 exists to contain a SQL injection vulnerability that allows malicious users to inject arbitrary commands via 'user_firstname' parameter.
Victor Cms Project Victor Cms 1.0
7.5
CVSSv3
CVE-2021-46458
Victor CMS v1.0 exists to contain a SQL injection vulnerability in the component admin/posts.php?source=add_post. This vulnerability can be exploited through a crafted POST request via the post_title parameter.
Victor Cms Project Victor Cms 1.0
7.5
CVSSv3
CVE-2022-28060
SQL Injection vulnerability in Victor CMS v1.0, via the user_name parameter to /includes/login.php.
Victor Cms Project Victor Cms 1.0
6.1
CVSSv3
CVE-2020-13427
Victor CMS 1.0 has Persistent XSS in admin/users.php?source=add_user via the user_name, user_firstname, or user_lastname parameter.
Victorcms Project Victorcms 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2