jspring996/PHPcodecms

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-27812 ↗	Apr 13, 2023Thursday, 13 April 2023, 14:15	9.1 CRITICAL	—
bloofox v0.5.2 was discovered to contain an arbitrary file deletion vulnerability via the delete_file() function.
CVE-2023-29597 ↗	Apr 13, 2023Thursday, 13 April 2023, 14:15	8.8 HIGH	—
bloofox v0.5.2 was discovered to contain a SQL injection vulnerability via the component /index.php?mode=content&page=pages&action=edit&eid=1.
CVE-2023-29598 ↗	Apr 13, 2023Thursday, 13 April 2023, 14:15	9.8 CRITICAL	—
lmxcms v1.4.1 was discovered to contain a SQL injection vulnerability via the setbook parameter at index.php.