Dswjcms Security Vulnerabilities and Issues — Dswjcms CVE List

Lucene search

Dswjcms ProjectDswjcms

4 matches found

CVE•added 2021/09/09 6:15 p.m.•37 views

CVE-2020-19267

An issue in index.php/Dswjcms/Basis/resources of Dswjcms 1.6.4 allows attackers to execute arbitrary code via uploading a crafted PHP file.

9.8CVSS9.5AI score0.00853EPSS

CVE•added 2021/09/09 6:15 p.m.•35 views

CVE-2020-19265

A stored cross-site scripting (XSS) vulnerability in the index.php/Dswjcms/Basis/links component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML.

6.1CVSS5.9AI score0.00223EPSS

CVE•added 2021/09/09 6:15 p.m.•28 views

CVE-2020-19266

A stored cross-site scripting (XSS) vulnerability in the index.php/Dswjcms/Site/articleList component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML.

6.1CVSS5.9AI score0.00223EPSS

CVE•added 2021/09/09 6:15 p.m.•27 views

CVE-2020-19268

A cross-site request forgery (CSRF) in index.php/Dswjcms/User/tfAdd of Dswjcms 1.6.4 allows authenticated attackers to arbitrarily add administrator users.

5.7CVSS5.5AI score0.00097EPSS