Wtcms Security Vulnerabilities and Issues — Wtcms CVE List

Lucene search

Wtcms ProjectWtcms

3 matches found

CVE•added 2021/09/01 10:15 p.m.•34 views

CVE-2020-20343

WTCMS 1.0 contains a cross-site request forgery (CSRF) vulnerability in the index.php?g=admin&m=nav&a=add_post component that allows attackers to arbitrarily add articles in the administrator background.

6.5CVSS6.4AI score0.00098EPSS

CVE•added 2019/09/23 2:15 p.m.•31 views

CVE-2019-16719

WTCMS 1.0 allows index.php?g=admin&m=index&a=index CSRF with resultant XSS.

6.5CVSS6.5AI score0.00118EPSS

CVE•added 2019/02/18 6:29 p.m.•29 views

CVE-2019-8911

An issue was discovered in WTCMS 1.0. It has stored XSS via the third text box (for the website statistics code).

6.1CVSS5.9AI score0.0024EPSS