Navigate Cms Security Vulnerabilities and Issues — Navigate Cms CVE List

Lucene search

NaviwebsNavigate Cms

2 matches found

CVE•added 2021/08/06 4:15 p.m.•68 views

CVE-2021-36455

SQL Injection vulnerability in Naviwebs Navigate CMS 2.9 via the quicksearch parameter in \lib\packages\comments\comments.php.

8.8CVSS9.1AI score0.00743EPSS

CVE•added 2018/10/03 8:29 p.m.•60 views

CVE-2018-17553

An "Unrestricted Upload of File with Dangerous Type" issue with directory traversal in navigate_upload.php in Naviwebs Navigate CMS 2.8 allows authenticated attackers to achieve remote code execution via a POST request with engine=picnik and id=../../../navigate_info.php.

8.8CVSS8.8AI score0.80455EPSS