Cscms Security Vulnerabilities and Issues — Cscms CVE List

Lucene search

ChshcmsCscms

4 matches found

CVE•added 2022/06/09 7:15 p.m.•57 views

CVE-2022-30898

A Cross-site request forgery (CSRF) vulnerability in Cscms music portal system v4.2 allows remote attackers to change the administrator's username and password.

6.5CVSS6.6AI score0.00105EPSS

CVE•added 2018/09/08 3:29 p.m.•34 views

CVE-2018-16730

\upload\plugins\sys\Install.php in CScms 4.1 has XSS via the site name.

6.1CVSS5.9AI score0.0024EPSS

CVE•added 2018/09/02 6:29 p.m.•31 views

CVE-2018-16337

An issue was discovered in Cscms V4.1.8. There is a CSRF vulnerability that can modify a website's basic configuration via upload/admin.php/setting/save.

6.5CVSS6.5AI score0.00117EPSS

CVE•added 2019/03/07 11:29 p.m.•29 views

CVE-2019-9598

An issue was discovered in Cscms 4.1.0. There is an admin.php/pay CSRF vulnerability that can change the payment account to redirect funds.

6.5CVSS6.4AI score0.00098EPSS