Cxuucms Security Vulnerabilities and Issues — Cxuucms CVE List | Vulners.com

Lucene search

K

CxuuCxuucms

5 matches found

CVE•added 2020/12/26 4:15 a.m.•80 views

CVE-2020-35347

CXUUCMS V3 3.1 has a CSRF vulnerability that can add an administrator account via admin.php?c=adminuser&a=add.

6.5CVSS6.5AI score0.00117EPSS

CVE•added 2020/12/27 7:15 a.m.•67 views

CVE-2020-29249

CXUUCMS V3 allows class="layui-input" XSS.

6.1CVSS6.3AI score0.0024EPSS

CVE•added 2020/12/27 7:15 a.m.•66 views

CVE-2020-29250

CXUUCMS V3 allows XSS via the first and third input fields to /public/admin.php.

6.1CVSS5.9AI score0.0024EPSS

CVE•added 2022/03/29 6:15 p.m.•50 views

CVE-2021-42970

Cross Site Scripting (XSS) vulnerability exists in cxuucms v3 via the imgurl of /feedback/post/ content parameter.

6.1CVSS6AI score0.00228EPSS

CVE•added 2021/08/23 11:15 p.m.•32 views

CVE-2021-39599

Multiple Cross Site Scripting (XSS) vulnerabilities exists in CXUUCMS 3.1 in the search and c parameters in (1) public/search.php and in the (2) c parameter in admin.php.

6.1CVSS6.1AI score0.00201EPSS