Lucene search
AbocmsAbo.cms
3 matches found
CVE-2021-37787
The unprivileged administrative interface in ABO.CMS version 5.8 through v.5.9.3 is affected by a SQL Injection vulnerability via a HTTP POST request to the TinyMCE module
6.5CVSS8AI score0.00054EPSS
CVE-2023-46952
Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary code via a crafted payload to the Referer header.
6.1CVSS6.3AI score0.00135EPSS
CVE-2023-48858
A Cross-site scripting (XSS) vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part.
6.1CVSS6.1AI score0.00176EPSS