Lucene search
8cmsLjcms
3 matches found
CVE-2020-20583
A SQL injection vulnerability in /question.php of LJCMS Version v4.3.R60321 allows attackers to obtain sensitive database information.
7.5CVSS7.6AI score0.00238EPSS
CVE-2020-21237
An issue in the user login box of LJCMS v1.11 allows attackers to hijack user accounts via brute force attacks.
9.8CVSS9.2AI score0.00405EPSS
CVE-2020-20979
An arbitrary file upload vulnerability in the move_uploaded_file() function of LJCMS v4.3 allows attackers to execute arbitrary code.
9.8CVSS9.6AI score0.00853EPSS