Soy Cms Security Vulnerabilities and Issues — Soy Cms CVE List

Lucene search

BrassicaSoy Cms

3 matches found

CVE•added 2020/09/18 5:15 p.m.•32 views

CVE-2020-15188

SOY CMS 3.0.2.327 and earlier is affected by Unauthenticated Remote Code Execution (RCE). The allows remote attackers to execute any arbitrary code when the inquiry form feature is enabled by the service. The vulnerability is caused by unserializing the form without any restrictions. This was fixed...

10CVSS9.9AI score0.05465EPSS

CVE•added 2019/04/20 3:29 p.m.•30 views

CVE-2019-11376

SOY CMS v3.0.2 allows remote attackers to execute arbitrary PHP code via a

7.2CVSS7.3AI score0.01006EPSS

CVE•added 2020/09/18 6:15 p.m.•28 views

CVE-2020-15189

SOY CMS 3.0.2 and earlier is affected by Remote Code Execution (RCE) using Unrestricted File Upload. Cross-Site Scripting(XSS) vulnerability that was used in CVE-2020-15183 can be used to increase impact by redirecting the administrator to access a specially crafted page. This vulnerability is caus...

7.2CVSS5.8AI score0.05095EPSS