source-trace/appcms

source-trace/appcms

Releases0

Stars2

http://www.appcms.cc/

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-45380 ↗	Jan 23, 2022Sunday, 23 January 2022, 17:15	6.1 MEDIUM	4.3 MEDIUM
AppCMS 2.0.101 has a XSS injection vulnerability in \templates\m\inc_head.php
CVE-2020-36004 ↗	Jun 3, 2021Thursday, 3 June 2021, 23:15	6.5 MEDIUM	4 MEDIUM
AppCMS 2.0.101 in /admin/download_frame.php has a SQL injection vulnerability which allows attackers to obtain sensitive database information.
CVE-2020-36005 ↗	Jun 3, 2021Thursday, 3 June 2021, 23:15	6.5 MEDIUM	5.5 MEDIUM
AppCMS 2.0.101 in /admin/app.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site.
CVE-2020-36006 ↗	Jun 3, 2021Thursday, 3 June 2021, 23:15	6.5 MEDIUM	5.5 MEDIUM
AppCMS 2.0.101 in /admin/info.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site.
CVE-2020-36007 ↗	Jun 3, 2021Thursday, 3 June 2021, 23:15	6.1 MEDIUM	4.3 MEDIUM
AppCMS 2.0.101 in /admin/template/tpl_app.php has a cross site scripting attack vulnerability which allows the attacker to obtain sensitive information of other users.
CVE-2019-9595 ↗	Mar 6, 2019Wednesday, 6 March 2019, 16:29	—	4.3 MEDIUM
AppCMS 2.0.101 allows XSS via the upload/callback.php params parameter.