Supersign Cms Security Vulnerabilities and Issues — Supersign Cms CVE List

Lucene search

LgSupersign Cms

3 matches found

CVE•added 2018/09/21 5:29 p.m.•90 views

CVE-2018-17173

LG SuperSign CMS allows remote attackers to execute arbitrary code via the sourceUri parameter to qsr_server/device/getThumbnail.

9.8CVSS9.7AI score0.78291EPSS

CVE•added 2018/09/14 9:29 p.m.•41 views

CVE-2018-16287

LG SuperSign CMS allows file upload via signEzUI/playlist/edit/upload/..%2f URIs.

9.8CVSS9.4AI score0.02581EPSS

CVE•added 2018/09/14 9:29 p.m.•26 views

CVE-2018-16286

LG SuperSign CMS allows authentication bypass because the CAPTCHA requirement is skipped if a captcha:pass cookie is sent, and because the PIN is limited to four digits.

9.8CVSS9.5AI score0.00436EPSS