CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SetsucoCMS all versions does not properly manage sessions, which allows remote attackers to disclose or alter unauthorized information via unspecified vectors...

6.5CVSS6.3AI score0.00272EPSS

Exploits0References3

Prion•added 2017/04/12 10:59 p.m.•12 views

Information disclosure

SetsucoCMS all versions does not properly manage sessions, which allows remote attackers to disclose or alter unauthorized information via unspecified vectors...

6.4CVSS6.9AI score0.00272EPSS

Exploits0References3

Prion•added 2017/04/12 10:59 p.m.•9 views

Design/Logic Flaw

SetsucoCMS all versions allows remote attackers to cause a denial of service via unspecified vectors...

5CVSS7.1AI score0.01269EPSS

Exploits0References3

OSV•added 2017/04/12 10:59 p.m.•2 views

CVE-2016-4891

Cross-site request forgery CSRF vulnerability in SetsucoCMS all versions allows remote attackers to hijack the authentication of an administrator to change settings via unspecified vectors...

8.8CVSS5.8AI score

Exploits0References3

NVD•added 2017/04/12 10:59 p.m.•10 views

CVE-2016-4892

Cross-site scripting vulnerability in SetsucoCMS all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS6.1AI score0.00343EPSS

Exploits0References3

NVD•added 2017/04/12 10:59 p.m.•9 views

CVE-2016-4894

SetsucoCMS all versions allows remote attackers to cause a denial of service via unspecified vectors...

5.3CVSS5.3AI score0.01269EPSS

Exploits0References3

Prion•added 2017/04/12 10:59 p.m.•13 views

Cross site scripting

Cross-site scripting vulnerability in SetsucoCMS all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.5AI score0.00343EPSS

Exploits0References3

OSV•added 2017/04/12 10:59 p.m.•1 views

CVE-2016-4895

SetsucoCMS all versions allows remote authenticated attackers to conduct code injection attacks via unspecified vectors...

8.8CVSS5.9AI score

Exploits0References3

NVD•added 2017/04/12 10:59 p.m.•8 views

CVE-2016-4893

SQL injection vulnerability in the SetsucoCMS all versions allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors...

8.8CVSS8.7AI score0.00697EPSS

Exploits0References3

NVD•added 2017/04/12 10:59 p.m.•8 views

CVE-2016-4891

Cross-site request forgery CSRF vulnerability in SetsucoCMS all versions allows remote attackers to hijack the authentication of an administrator to change settings via unspecified vectors...

8.8CVSS8.8AI score0.0014EPSS

Exploits0References3

OSV•added 2017/04/12 10:59 p.m.•1 views

CVE-2016-4896

SetsucoCMS all versions does not properly manage sessions, which allows remote attackers to disclose or alter unauthorized information via unspecified vectors...

6.5CVSS5.8AI score

Exploits0References3

NVD•added 2017/04/12 10:59 p.m.•8 views

CVE-2016-4895

SetsucoCMS all versions allows remote authenticated attackers to conduct code injection attacks via unspecified vectors...

8.8CVSS8.5AI score0.01346EPSS

Exploits0References3

Prion•added 2017/04/12 10:59 p.m.•14 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in SetsucoCMS all versions allows remote attackers to hijack the authentication of an administrator to change settings via unspecified vectors...

6.8CVSS7.5AI score0.0014EPSS

Exploits0References3

Prion•added 2017/04/12 10:59 p.m.•11 views

Sql injection

SQL injection vulnerability in the SetsucoCMS all versions allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.5AI score0.00697EPSS

Exploits0References3

OSV•added 2017/04/12 10:59 p.m.•2 views

CVE-2016-4892

Cross-site scripting vulnerability in SetsucoCMS all versions allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.9AI score

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by