Greencms@2.3 Security Vulnerabilities and Issues — Greencms@2.3 CVE List

Lucene search

NjtechGreencms2.3

2 matches found

CVE•added 2023/06/20 3:15 p.m.•34 views

CVE-2020-21366

Cross Site Request Forgery vulnerability in GreenCMS v.2.3 allows an attacker to gain privileges via the adduser function of index.php.

8CVSS7.9AI score0.0006EPSS

CVE•added 2024/01/29 8:15 p.m.•32 views

CVE-2024-22570

A stored cross-site scripting (XSS) vulnerability in /install.php?m=install&c=index&a=step3 of GreenCMS v2.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

5.4CVSS5.2AI score0.00078EPSS