Minicms@1.10 Security Vulnerabilities and Issues — Minicms@1.10 CVE List

Lucene search

1234nMinicms1.10

3 matches found

CVE•added 2021/01/05 10:15 p.m.•72 views

CVE-2020-36051

Directory traversal vulnerability in page_edit.php in MiniCMS V1.10 allows remote attackers to read arbitrary files via the state parameter.

7.5CVSS7.4AI score0.00426EPSS

CVE•added 2021/01/05 10:15 p.m.•71 views

CVE-2020-36052

Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote attackers to include and execute arbitrary files via the state parameter.

9.8CVSS9.6AI score0.01695EPSS

CVE•added 2021/04/28 4:15 p.m.•50 views

CVE-2020-17999

Cross Site Scripting (XSS) in MiniCMS v1.10 allows remote attackers to execute arbitrary code by injecting commands via a crafted HTTP request to the component "/mc-admin/post-edit.php".

6.1CVSS6.3AI score0.01477EPSS