Cxuucms@3.1 Security Vulnerabilities and Issues — Cxuucms@3.1 CVE List

Lucene search

CxuuCxuucms3.1

4 matches found

CVE•added 2020/12/26 4:15 a.m.•80 views

CVE-2020-35347

CXUUCMS V3 3.1 has a CSRF vulnerability that can add an administrator account via admin.php?c=adminuser&a=add.

6.5CVSS6.5AI score0.00117EPSS

CVE•added 2020/12/26 4:15 a.m.•75 views

CVE-2020-35346

CXUUCMS V3 3.1 is affected by a reflected XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the imgurl parameter of admin.php?c=content&a=add.

4.8CVSS4.9AI score0.00176EPSS

CVE•added 2021/08/27 7:15 p.m.•34 views

CVE-2021-3264

SQL Injection vulnerability in cxuucms 3.1 ivia the pid parameter in public/admin.php.

7.2CVSS7.4AI score0.00255EPSS

CVE•added 2021/08/23 11:15 p.m.•32 views

CVE-2021-39599

Multiple Cross Site Scripting (XSS) vulnerabilities exists in CXUUCMS 3.1 in the search and c parameters in (1) public/search.php and in the (2) c parameter in admin.php.

6.1CVSS6.1AI score0.00201EPSS