Cms Security Vulnerabilities and Issues — Cms CVE List

Lucene search

JuzawebCms

4 matches found

CVE•added 2023/10/28 1:15 a.m.•67 views

CVE-2023-46467

Cross Site Scripting vulnerability in juzawebCMS v.3.4 and before allows a remote attacker to execute arbitrary code via a crafted payload to the username parameter of the registration page.

5.4CVSS5.7AI score0.00121EPSS

CVE•added 2025/06/02 12:15 a.m.•42 views

CVE-2025-5420

A vulnerability classified as problematic was found in juzaweb CMS up to 3.4.2. Affected by this vulnerability is an unknown functionality of the file /admin-cp/file-manager/upload of the component Profile Page. The manipulation of the argument Upload leads to cross site scripting. The attack can b...

5.4CVSS6.1AI score0.00037EPSS

CVE•added 2025/06/02 1:15 a.m.•37 views

CVE-2025-5422

A vulnerability, which was classified as problematic, was found in juzaweb CMS up to 3.4.2. This affects an unknown part of the file /admin-cp/logs/email of the component Email Logs Page. The manipulation leads to improper access controls. It is possible to initiate the attack remotely. The exploit...

5.3CVSS4.6AI score0.00035EPSS

CVE•added 2024/08/06 1:15 p.m.•21 views

CVE-2024-7551

A vulnerability was found in juzaweb CMS up to 3.4.2. It has been classified as problematic. Affected is an unknown function of the file /admin-cp/theme/editor/default of the component Theme Editor. The manipulation leads to path traversal. It is possible to launch the attack remotely. The exploit ...

5.1CVSS3.7AI score0.00929EPSS