sec-Kode/cve

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-45529 ↗	May 27, 2025Tuesday, 27 May 2025, 19:15	7.1 HIGH	—
An arbitrary file read vulnerability in the ReadTextAsynchronous function of SSCMS v7.3.1 allows attackers to read arbitrary files via sending a crafted GET request to /cms/templates/templatesAssetsEditor.
CVE-2024-25828 ↗	Feb 22, 2024Thursday, 22 February 2024, 16:15	4.9 MEDIUM	—
cmseasy V7.7.7.9 has an arbitrary file deletion vulnerability in lib/admin/template_admin.php.