SetucoCMS SQL Injection Vulnerability

SetucoCMS is a content management system CMS. A SQL injection vulnerability exists in SetucoCMS. An attacker can exploit this vulnerability to execute arbitrary SQL commands...

SetucoCMS Denial of Service Vulnerability

SetucoCMS is a content management system CMS. A denial of service vulnerability exists in SetucoCMS. A remote attacker could exploit this vulnerability to cause a denial of service...

SetucoCMS Cross-Site Request Forgery Vulnerability

SetucoCMS is a content management system CMS. A cross-site request forgery vulnerability exists in SetucoCMS. An attacker could exploit this vulnerability to perform unauthorized operations...

SetucoCMS Cross-Site Scripting Vulnerability

SetucoCMS is a content management system CMS. A cross-site scripting vulnerability exists in SetucoCMS. An attacker can exploit this vulnerability to execute arbitrary script on a user's web browser...

SetucoCMS Information Disclosure Vulnerability

SetucoCMS is a content management system CMS. A security vulnerability exists in SetucoCMS. An attacker could exploit the vulnerability to disclose or modify information...

SetucoCMS vulnerable to cross-site request forgery

Overview SetucoCMS provided by SetucoCMS Project is a content management system CMS. SetucoCMS contains cross-site request forgery vulnerability. Satoshi Ogawa of Mitsui Bussan Secure Directions, Inc. and Shoji Baba reported this vulnerability to IPA. JPCERT/CC coordinated with the developer unde...

SetucoCMS vulnerable to cross-site scripting

Overview SetucoCMS provided by SetucoCMS Project is a content management system CMS. SetucoCMS contains cross-site scripting vulnerability. Satoshi Ogawa of Mitsui Bussan Secure Directions, Inc. and Shoji Baba reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...

SetucoCMS vulnerable to SQL injection

Overview SetucoCMS provided by SetucoCMS Project is a content management system CMS. SetucoCMS contains an SQL injection vulnerability. Shoji Baba reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning partnership. Impact An arbitrary...

SetucoCMS vulnerable to denial-of-service (DoS)

Overview SetucoCMS provided by SetucoCMS Project is a content management system CMS. SetucoCMS contains denial-of-service DoS vulnerability. Shoji Baba reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning partnership. Impact A remot...

SetucoCMS vulnerable to code injection

Overview SetucoCMS provided by SetucoCMS Project is a content management system CMS. SetucoCMS contains code injection vulnerability. Shoji Baba reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning partnership. Impact Arbitrary code...

SetucoCMS vulnerable to session management

Overview SetucoCMS provided by SetucoCMS Project is a content management system CMS. SetucoCMS contains session management vulnerability. Satoshi Ogawa of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security...

JVN#80157683: SetucoCMS multiple vulnerabilities

SetucoCMS provided by SetucoCMS Project is a content management system CMS. SetucoCMS contains multiple vulnerabilities listed below. Cross-site request forgery - CVE-2016-4891 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N| Base Score: 5.4 CVSS v2|...