acmglz/bug2_report

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-8875 ↗	Sep 15, 2024Sunday, 15 September 2024, 22:15	5.4 MEDIUM	5.5 MEDIUM
A vulnerability classified as critical was found in vedees wcms up to 0.3.2. Affected by this vulnerability is an unknown functionality of the file /wex/finder.php. The manipulation of the argument p leads to path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
CVE-2024-8145 ↗	Aug 25, 2024Sunday, 25 August 2024, 06:15	2.4 LOW	3.3 LOW
A vulnerability, which was classified as problematic, has been found in ClassCMS 4.8. Affected by this issue is some unknown functionality of the file /index.php/admin of the component Article Handler. The manipulation of the argument Title leads to basic cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-8144 ↗	Aug 25, 2024Sunday, 25 August 2024, 04:15	3.5 LOW	4 MEDIUM
A vulnerability classified as problematic was found in ClassCMS 4.8. Affected by this vulnerability is an unknown functionality of the file /index.php/admin of the component Logo Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.