Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
minicms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-36051
Directory traversal vulnerability in page_edit.php in MiniCMS V1.10 allows remote malicious users to read arbitrary files via the state parameter.
1234n Minicms 1.10
9.8
CVSSv3
CVE-2020-36052
Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote malicious users to include and execute arbitrary files via the state parameter.
1234n Minicms 1.10
6.1
CVSSv3
CVE-2021-41663
A cross-site scripting (XSS) vulnerability exists in Mini CMS V1.11. The vulnerability exists in the article upload: post-edit.php page.
1234n Minicms 1.11
7.5
CVSSv3
CVE-2018-18891
MiniCMS 1.10 allows file deletion via /mc-admin/post.php?state=delete&delete= because the authentication check occurs too late.
1234n Minicms 1.10
6.1
CVSSv3
CVE-2018-16233
MiniCMS V1.10 has XSS via the mc-admin/post-edit.php tags parameter.
1234n Minicms 1.10
6.1
CVSSv3
CVE-2018-16298
An issue exists in MiniCMS 1.10. There is an mc-admin/post.php?tag= XSS vulnerability for a state=delete, state=draft, or state=publish request.
1234n Minicms 1.10
9.6
CVSSv3
CVE-2021-33387
Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows malicious user to execute arbitrary code via a crafted get request.
1234n Minicms 1.10
5.4
CVSSv3
CVE-2018-10227
MiniCMS v1.10 has XSS via the mc-admin/conf.php site_link parameter.
1234n Minicms 1.10
6.1
CVSSv3
CVE-2018-10296
MiniCMS V1.10 has XSS via the mc-admin/post-edit.php title parameter.
1234n Minicms 1.10
2.7
CVSSv3
CVE-2018-10423
mc-admin/post.php in MiniCMS 1.10 allows remote malicious users to obtain a directory listing of the top-level directory of the web root via a link that becomes available after posting an article.
1234n Minicms 1.10
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »