Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yeager yeager cms 1.2.1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-7567
SQL injection vulnerability in Yeager CMS 1.2.1 allows remote malicious users to execute arbitrary SQL commands via the "passwordreset&token" parameter.
Yeager Yeager Cms 1.2.1
1 EDB exploit
9.8
CVSSv3
CVE-2015-7568
SQL injection vulnerability in the password recovery feature in Yeager CMS 1.2.1 allows remote malicious users to change the account credentials of known users via the "userEmail" parameter.
Yeager Yeager Cms 1.2.1
1 EDB exploit
8.8
CVSSv3
CVE-2015-7569
SQL injection vulnerability in "yeager/y.php/tab_USERLIST" in Yeager CMS 1.2.1 allows local users to execute arbitrary SQL commands via the "pagedir_orderby" parameter.
Yeager Yeager Cms 1.2.1
1 EDB exploit
7.2
CVSSv3
CVE-2015-7570
Multiple server-side request forgery (SSRF) vulnerabilities in Yeager CMS 1.2.1 allow remote malicious users to trigger outbound requests and enumerate open ports via the dbhost parameter to libs/org/adodb_lite/tests/test_adodb_lite.php, libs/org/adodb_lite/tests/test_datadiction...
Yeager Yeager Cms 1.2.1
1 EDB exploit
7.8
CVSSv3
CVE-2015-7571
Unrestricted file upload vulnerability in Yeager CMS 1.2.1 allows remote malicious users to execute arbitrary code by uploading a file with an executable extension.
Yeager Yeager Cms 1.2.1
1 EDB exploit
NA
CVE-2015-7572
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2013-0237. Reason: This candidate is a duplicate of CVE-2013-0237. Notes: All CVE users should reference CVE-2013-0237 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started