2 matches found
PT-2025-9992 · Publiccms · Publiccms
Name of the Vulnerable Software and Affected Versions: PublicCMS version 4.0.202406 Description: The issue is related to an arbitrary file upload vulnerability in the /cms/CmsWebFileAdminController.java component. This allows attackers to execute arbitrary code by uploading a crafted svg or xml...
PT-2024-31983 · Publiccms · Publiccms
Name of the Vulnerable Software and Affected Versions: PublicCMS version 4.0.202406.d Description: A cross-site scripting XSS issue was discovered in PublicCMS via a crafted script to the Category Management feature. This allows for potential exploitation. Recommendations: For PublicCMS version...