Articlecms Security Vulnerabilities and Issues — Articlecms CVE List

Lucene search

Articlecms ProjectArticlecms

4 matches found

CVE•added 2021/05/13 3:15 p.m.•120 views

CVE-2020-20092

File Upload vulnerability exists in ArticleCMS 1.0 via the image upload feature at /admin by changing the Content-Type to image/jpeg and placing PHP code after the JPEG data, which could let a remote malicious user execute arbitrary PHP code.

9.8CVSS9.6AI score0.00433EPSS

CVE•added 2018/11/23 5:29 a.m.•31 views

CVE-2018-19469

ArticleCMS through 2017-02-19 has XSS via the /update_personal_infomation realname or email parameter.

6.1CVSS6AI score0.00223EPSS

CVE•added 2018/06/13 7:29 p.m.•28 views

CVE-2018-12339

ArticleCMS through 2017-02-19 has XSS via an "add an article" action.

5.4CVSS5.2AI score0.00191EPSS

CVE•added 2021/05/13 3:15 p.m.•22 views

CVE-2020-28063

A file upload issue exists in all versions of ArticleCMS which allows malicious users to getshell.

9.8CVSS9.3AI score0.00433EPSS