Lucene search
Basic-cmsSweetrice
2 matches found
CVE-2010-5318
The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to modify the administrator's password by specifying the administrator's e-mail address in the email parameter.
4.3CVSS7AI score0.03428EPSS
CVE-2010-5316
Cross-site scripting (XSS) vulnerability in as/index.php in SweetRice CMS before 0.6.7.1 allows remote attackers to inject arbitrary web script or HTML via a top_height cookie.
4.3CVSS5.8AI score0.00225EPSS