Minicms Security Vulnerabilities and Issues — Minicms CVE List

Lucene search

1234nMinicms

4 matches found

CVE•added 2022/02/10 11:15 p.m.•104 views

CVE-2021-44970

MiniCMS v1.11 was discovered to contain a cross-site scripting (XSS) vulnerability via /mc-admin/page-edit.php.

5.4CVSS5.3AI score0.00181EPSS

CVE•added 2023/10/31 11:15 p.m.•53 views

CVE-2023-46378

Stored Cross Site Scripting (XSS) vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php.

5.4CVSS5.3AI score0.0012EPSS

CVE•added 2018/11/01 1:29 a.m.•50 views

CVE-2018-18890

MiniCMS 1.10 allows full path disclosure via /mc-admin/post.php?state=delete&delete= with an invalid filename.

5.3CVSS5.2AI score0.00366EPSS

CVE•added 2018/04/19 8:29 a.m.•47 views

CVE-2018-10227

MiniCMS v1.10 has XSS via the mc-admin/conf.php site_link parameter.

5.4CVSS5.2AI score0.00206EPSS