Hongcms Security Vulnerabilities and Issues — Hongcms CVE List

Lucene search

Hongcms ProjectHongcms

4 matches found

CVE•added 2018/06/27 6:29 p.m.•48 views

CVE-2018-12912

An issue wan discovered in admin\controllers\database.php in HongCMS 3.0.0. There is a SQL Injection vulnerability via an admin/index.php/database/operate?dbaction=emptytable&tablename= URI.

7.2CVSS7.3AI score0.01873EPSS

CVE•added 2022/07/01 10:15 p.m.•48 views

CVE-2022-32411

An issue in the languages config file of HongCMS v3.0 allows attackers to getshell.

7.2CVSS6.9AI score0.00358EPSS

CVE•added 2022/07/01 10:15 p.m.•41 views

CVE-2022-32412

An issue in the /template/edit component of HongCMS v3.0 allows attackers to getshell.

7.2CVSS6.9AI score0.00358EPSS

CVE•added 2018/09/10 4:29 a.m.•26 views

CVE-2018-16774

HongCMS 3.0.0 allows arbitrary file deletion via a ../ in the file parameter to admin/index.php/language/ajax?action=delete.

7.5CVSS6.5AI score0.00523EPSS