Lucene search
Portfoliocms ProjectPortfoliocms1.0.5
5 matches found
CVE-2018-12263
portfolioCMS 1.0.5 allows upload of arbitrary .php files via the admin/portfolio.php?newpage=true URI.
8.8CVSS8.7AI score0.00401EPSS
CVE-2018-15848
An issue was discovered in portfolioCMS 1.0.5. There is CSRF to create new pages via admin/portfolio.php?newpage=true.
8.8CVSS8.6AI score0.00143EPSS
CVE-2018-15849
An issue was discovered in portfolioCMS 1.0.5. There is CSRF to update the website settings via admin/aboutus.php.
4.3CVSS4.6AI score0.00098EPSS
CVE-2020-20402
Westbrookadmin portfolioCMS v1.05 allows attackers to bypass password validation and access sensitive information via session fixation.
7.5CVSS7.5AI score0.00047EPSS
CVE-2018-12110
portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.
7.2CVSS7.5AI score0.0026EPSS