Lucene search
Autocms ProjectAutocms
3 matches found
CVE-2024-44724
AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value.
7.2CVSS8.1AI score0.00412EPSS
CVE-2024-44725
AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php.
7.2CVSS7.9AI score0.00116EPSS
CVE-2024-8866
A vulnerability was found in AutoCMS 5.4. It has been classified as problematic. This affects an unknown part of the file /admin/robot.php. The manipulation of the argument sidebar leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the p...
6.9CVSS4.6AI score0.00038EPSS