Lucene search

Jeecms Security Vulnerabilities

cve

CVE-2020-21729

JEECMS x1.1 contains a stored cross-site scripting (XSS) vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted...

5.4CVSS

5.9AI Score

0.001EPSS

2021-10-07 10:15 PM

cve

CVE-2020-20799

JeeCMS 1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the commentText...

5.4CVSS

5.9AI Score

0.001EPSS

2021-09-30 10:15 PM

cve

CVE-2018-20528

JEECMS 9 has SSRF via the ueditor/getRemoteImage.jspx upfile...

6.5CVSS

7.4AI Score

0.001EPSS

2018-12-28 04:29 PM

cve

CVE-2018-19544

JEECMS 9.3 has CSRF via the api/admin/content/save URI to add...

6.5CVSS

7.4AI Score

0.001EPSS

2018-11-26 07:29 AM

cve

CVE-2018-19545

JEECMS 9.3 has CSRF via the api/admin/role/save URI to add a...

8.8CVSS

7.3AI Score

0.001EPSS

2018-11-26 07:29 AM

cve

CVE-2018-18952

JEECMS 9.3 has XSS via an index.do#/content/update?type=update...

4.8CVSS

6.2AI Score

0.001EPSS

2018-11-05 09:29 AM