Empirecms Security Vulnerabilities and Issues — Empirecms CVE List

Lucene search

PhomeEmpirecms

2 matches found

cve•added 2018/10/31 6:29 a.m.•32 views

CVE-2018-18869

EmpireCMS V7.5 allows remote attackers to upload and execute arbitrary code via ..%2F directory traversal in a .php filename in the upload/e/admin/ecmscom.php path parameter.

9.8CVSS9.6AI score0.03845EPSS

cve•added 2018/10/09 8:29 p.m.•29 views

CVE-2018-18086

EmpireCMS v7.5 has an arbitrary file upload vulnerability in the LoadInMod function in e/class/moddofun.php, exploitable by logged-in users.

8.8CVSS8.7AI score0.00401EPSS