CVE-2018-16431
admin/admin/adminsave.html in YFCMF v3.0 allows CSRF to add an administrator...
8.8CVSS
8.5AI Score
0.001EPSS
CVE-2020-23691
YFCMF v2.3.1 has a Remote Command Execution (RCE) vulnerability in the...
9.8CVSS
9.6AI Score
0.008EPSS
CVE-2020-23689
In YFCMF v2.3.1, there is a stored XSS vulnerability in the comments section of the news...
4.8CVSS
4.8AI Score