Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:29 a.m.8 views

CVE-2019-12734

SiteVision 4 has Incorrect Access Control...

8.8CVSS6.9AI score0.02084EPSS
Exploits5References1
0day.today
0day.today
added 2019/12/08 12:0 a.m.433 views

SiteVision 4.x / 5.x Insufficient Module Access Control Vulnerability #ByPass

SiteVision suffers from an issue where attacker may inject non-authorized module when editing pages using a lower privileged account, which can lead to cross site scripting and remote code execution. All versions of SiteVision 4 until 4.5.6 and all versions of SiteVision 5 until 5.1.1 are...

0.9AI score0.06039EPSS
Exploits6
NVD
NVD
added 2019/12/06 5:15 p.m.18 views

CVE-2019-12734

SiteVision 4 has Incorrect Access Control...

8.8CVSS8.8AI score0.02084EPSS
Exploits5References6
CVE
CVE
added 2019/12/06 4:47 p.m.81 views

CVE-2019-12734

SiteVision 4.x/5.x suffers from Insufficient Module Access Control (CVE-2019-12734). A low-privilege user (e.g., Editor) can inject or edit script modules during page edits, enabling Cross‑Site Scripting and in some descriptions Remote Code Execution. Affected versions: SiteVision 4 up to 4.5.6 a...

8.8CVSS8.6AI score0.02084EPSS
Exploits5References6Affected Software1
Packet Storm
Packet Storm
added 2019/12/06 12:0 a.m.267 views

SiteVision 4.x / 5.x Remote Code Execution

SiteVision Remote Code Execution CVE-2019-12733 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12733 https://www.cybercom.com/About-Cybercom/Blogs/Security-Advisories/high-risk-vulnerabilities-in-cms-product/ Summary Attackers may execute arbitrary code as root on the target server after...

0.1AI score0.06039EPSS
Exploits6
Rows per page
Query Builder