Rapidcms Security Vulnerabilities and Issues — Rapidcms CVE List

Lucene search

OpenrapidRapidcms

9 matches found

CVE•added 2023/08/21 2:15 a.m.•146 views

CVE-2023-4448

A vulnerability was found in OpenRapid RapidCMS 1.3.1 and classified as critical. This issue affects some unknown processing of the file admin/run-movepass.php. The manipulation of the argument password/password2 leads to weak password recovery. The attack may be initiated remotely. The exploit has...

9.8CVSS8.1AI score0.0006EPSS

CVE•added 2023/08/21 2:15 a.m.•125 views

CVE-2023-4447

A vulnerability has been found in OpenRapid RapidCMS 1.3.1 and classified as critical. This vulnerability affects unknown code of the file admin/article-chat.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the ...

9.8CVSS8.4AI score0.00178EPSS

CVE•added 2024/09/06 10:15 p.m.•45 views

CVE-2024-44838

RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the username parameter at /resource/runlogin.php.

9.8CVSS7.9AI score0.00123EPSS

CVE•added 2024/09/06 10:15 p.m.•44 views

CVE-2024-44839

RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the articleid parameter at /default/article.php.

9.8CVSS7.9AI score0.00123EPSS

CVE•added 2024/09/06 10:15 p.m.•44 views

CVE-2024-45771

RapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the password parameter at /resource/runlogin.php.

9.8CVSS8.1AI score0.00123EPSS

CVE•added 2024/08/30 1:15 p.m.•39 views

CVE-2024-8335

A vulnerability classified as critical has been found in OpenRapid RapidCMS up to 1.3.1. Affected is an unknown function of the file /resource/runlogon.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed...

9.8CVSS7.4AI score0.00146EPSS

CVE•added 2024/08/30 11:15 a.m.•37 views

CVE-2024-8331

A vulnerability was found in OpenRapid RapidCMS up to 1.3.1. It has been classified as critical. This affects an unknown part of the file /admin/user/user-move-run.php. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The exploit has ...

9.8CVSS7.3AI score0.00197EPSS

CVE•added 2023/08/21 1:15 a.m.•36 views

CVE-2023-4446

A vulnerability, which was classified as critical, was found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file template/default/category.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associated ...

9.8CVSS7.8AI score0.00131EPSS

CVE•added 2023/09/29 12:15 p.m.•35 views

CVE-2023-5258

A vulnerability classified as critical has been found in OpenRapid RapidCMS 1.3.1. This affects an unknown part of the file /resource/addgood.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

9.8CVSS8.3AI score0.00052EPSS