Hyperkopite/PublicCMS_Vulns
GitHub
Releases0
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 5.4 MEDIUM | — | ||
PublicCMS V5.202506.b is vulnerable to Cross Site Scripting (XSS) in the Content Search module. | |||
| 8.8 HIGH | — | ||
PublicCMS V5.202506.b is vulnerable to Cross Site Request Forgery (CSRF) in the CkEditorAdminController. | |||
| 9.1 CRITICAL | — | ||
PublicCMS V5.202506.b is vulnerable to SSRF. in the chat interface of SimpleAiAdminController. | |||
| 7.5 HIGH | — | ||
PublicCMS V5.202506.b is vulnerable to path traversal via the doUploadSitefile method. | |||