RO6OTXX/pescms_vulnerability

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-31677 ↗	Jul 6, 2022Wednesday, 6 July 2022, 13:15	6.5 MEDIUM	4.3 MEDIUM
An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that can modify admin and other members' passwords.
CVE-2021-31678 ↗	Jul 6, 2022Wednesday, 6 July 2022, 13:15	6.5 MEDIUM	4.3 MEDIUM
An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that can delete import information about a user's company.
CVE-2021-31679 ↗	Jul 6, 2022Wednesday, 6 July 2022, 13:15	6.5 MEDIUM	4.3 MEDIUM
An issue was discovered in PESCMS-V2.3.3. There is a CSRF vulnerability that allows attackers to delete admin and other members' account numbers.
CVE-2021-31676 ↗	Jul 6, 2022Wednesday, 6 July 2022, 13:15	6.1 MEDIUM	4.3 MEDIUM
A reflected XSS was discovered in PESCMS-V2.3.3. When combined with CSRF in the same file, they can cause bigger destruction.