AvaterXXX/CScms

AvaterXXX/CScms

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-17125 ↗	Sep 17, 2018Monday, 17 September 2018, 04:29	—	6.4 MEDIUM
CScms 4.1 allows arbitrary directory deletion via a dir=..\\ substring to plugins\sys\admin\Plugins.php.
CVE-2018-17126 ↗	Sep 17, 2018Monday, 17 September 2018, 04:29	—	7.5 HIGH
CScms 4.1 allows remote code execution, as demonstrated by 1');eval($_POST[cmd]);# in Web Name to upload\plugins\sys\Install.php.
CVE-2018-16730 ↗	Sep 8, 2018Saturday, 8 September 2018, 15:29	—	4.3 MEDIUM
\upload\plugins\sys\Install.php in CScms 4.1 has XSS via the site name.
CVE-2018-16731 ↗	Sep 8, 2018Saturday, 8 September 2018, 15:29	—	7.5 HIGH
CScms 4.1 allows arbitrary file upload by (for example) adding the php extension to the default filetype list (gif, jpg, png), and then providing a .php pathname within fileurl JSON data.
CVE-2018-16732 ↗	Sep 8, 2018Saturday, 8 September 2018, 15:29	—	6.8 MEDIUM
\upload\plugins\sys\admin\Setting.php in CScms 4.1 allows CSRF via admin.php/setting/ftp_save.