Hongcms Security Vulnerabilities and Issues — Hongcms CVE List

Lucene search

Hongcms ProjectHongcms

2 matches found

CVE•added 2018/04/22 1:29 a.m.•34 views

CVE-2018-10265

An issue was discovered in HongCMS v3.0.0. There is a CSRF vulnerability that can add an administrator account via the admin/index.php/users/save URI.

8.8CVSS8.6AI score0.00141EPSS

CVE•added 2018/04/26 5:29 a.m.•32 views

CVE-2018-10422

An issue was discovered in HongCMS 3.0.0. The post news feature has Stored XSS via the content field.

4.8CVSS4.8AI score0.00235EPSS