Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:2 p.m.10 views

CVE-2022-45550

AyaCMS 3.1.2 is vulnerable to Remote Code Execution RCE...

9.8CVSS7.6AI score0.01473EPSS
Exploits1References1
Prion
Prion
added 2022/12/22 6:15 p.m.14 views

Arbitrary file deletion

AyaCMS 3.1.2 is vulnerable to file deletion via /aya/module/admin/fstdel.inc.php...

7.5CVSS9.3AI score0.0079EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/12/22 12:0 a.m.12 views

PT-2022-27739 · Ayacms · Ayacms

Name of the Vulnerable Software and Affected Versions: AyaCMS version 3.1.2 Description: The issue concerns an arbitrary file upload vulnerability. It can be exploited via the /aya/module/admin/fst down.inc.php endpoint. Recommendations: For AyaCMS version 3.1.2, consider restricting access to th...

9.8CVSS9.4AI score0.00731EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/12/22 12:0 a.m.9 views

CVE-2022-46102

AyaCMS 3.1.2 is vulnerable to Arbitrary file upload via /aya/module/admin/fstdown.inc.php...

7.2AI score0.00731EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/12/22 12:0 a.m.41 views

CVE-2022-46102

AyaCMS 3.1.2 is vulnerable to Arbitrary file upload via /aya/module/admin/fstdown.inc.php...

9.7AI score0.00731EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/12/07 12:0 a.m.10 views

PT-2022-27573 · Ayacms · Ayacms

Name of the Vulnerable Software and Affected Versions: AyaCMS version 3.1.2 Description: The issue concerns Remote Code Execution RCE, allowing for potentially malicious code to be executed remotely. Recommendations: For AyaCMS version 3.1.2, at the moment, there is no information about a newer...

9.8CVSS9.6AI score0.01473EPSS
Exploits1References5
Prion
Prion
added 2022/03/01 3:15 p.m.19 views

Remote code execution

AyaCMS 3.1.2 is vulnerable to Remote Code Execution RCE via /aya/module/admin/usttabe.inc.php,...

6.5CVSS7.2AI score0.01767EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/03/01 2:55 p.m.17 views

CVE-2021-44238

AyaCMS 3.1.2 is vulnerable to Remote Code Execution RCE via /aya/module/admin/usttabe.inc.php,...

7.5AI score0.01767EPSS
Exploits1References1
OSV
OSV
added 2021/11/02 6:15 p.m.4 views

CVE-2020-23686

Cross site request forgery CSRF vulnerability in AyaCMS 3.1.2 allows attackers to change an administrators password or other unspecified impacts...

8.8CVSS5.6AI score0.00568EPSS
Exploits1References1
Cvelist
Cvelist
added 2021/11/02 5:45 p.m.19 views

CVE-2020-23686

Cross site request forgery CSRF vulnerability in AyaCMS 3.1.2 allows attackers to change an administrators password or other unspecified impacts...

8.9AI score0.00568EPSS
Exploits1References1
CVE
CVE
added 2021/11/02 5:45 p.m.43 views

CVE-2020-23686

CVE-2020-23686 affects AyaCMS 3.1.2 and is a Cross-Site Request Forgery (CSRF) flaw stemming from the software’s lack of CSRF protection during administrator password changes, enabling an attacker to change the admin password (and potentially other impacts) as described in multiple security recor...

8.8CVSS8.9AI score0.00568EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder