truonghuuphuc/CVE

GitHub

github.com

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Stars3

All of my found cves

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-26201 ↗	Mar 4, 2022Friday, 4 March 2022, 14:15	9.8 CRITICAL	7.5 HIGH
Victor CMS v1.0 was discovered to contain a SQL injection vulnerability.
CVE-2022-24563 ↗	Mar 3, 2022Thursday, 3 March 2022, 02:15	5.4 MEDIUM	3.5 LOW
In Genixcms v1.1.11, a stored Cross-Site Scripting (XSS) vulnerability exists in /gxadmin/index.php?page=themes&view=options" via the intro_title and intro_image parameters.
CVE-2022-23357 ↗	Feb 3, 2022Thursday, 3 February 2022, 03:15	9.1 CRITICAL	6.4 MEDIUM
mozilo2.0 was discovered to be vulnerable to directory traversal attacks via the parameter curent_dir.
CVE-2022-23871 ↗	Feb 3, 2022Thursday, 3 February 2022, 03:15	5.4 MEDIUM	3.5 LOW
Multiple cross-site scripting (XSS) vulnerabilities in the component outcomes_addProcess.php of Gibbon CMS v22.0.01 allow attackers to execute arbitrary web scripts or HTML via a crafted payload insterted into the name, category, description parameters.
CVE-2022-23873 ↗	Feb 3, 2022Thursday, 3 February 2022, 03:15	8.8 HIGH	6.5 MEDIUM
Victor CMS v1.0 was discovered to contain a SQL injection vulnerability that allows attackers to inject arbitrary commands via 'user_firstname' parameter.
CVE-2022-23872 ↗	Jan 31, 2022Monday, 31 January 2022, 22:15	4.8 MEDIUM	3.5 LOW
Emlog pro v1.1.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the component /admin/configure.php via the parameter footer_info.
CVE-2022-24263 ↗	Jan 31, 2022Monday, 31 January 2022, 22:15	9.8 CRITICAL	7.5 HIGH
Hospital Management System v4.0 was discovered to contain a SQL injection vulnerability in /Hospital-Management-System-master/func.php via the email parameter.
CVE-2022-24264 ↗	Jan 31, 2022Monday, 31 January 2022, 22:15	7.5 HIGH	7.8 HIGH
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/table_manager/ via the search_word parameter.
CVE-2022-24265 ↗	Jan 31, 2022Monday, 31 January 2022, 22:15	7.5 HIGH	7.8 HIGH
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/menu/ via the path=component/menu/&menu_filter=3 parameter.
CVE-2022-24266 ↗	Jan 31, 2022Monday, 31 January 2022, 22:15	7.5 HIGH	7.8 HIGH
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/table_manager/ via the order_by parameter.
CVE-2022-22868 ↗	Jan 28, 2022Friday, 28 January 2022, 19:15	4.8 MEDIUM	3.5 LOW
Gibbon CMS v22.0.01 was discovered to contain a cross-site scripting (XSS) vulnerability, that allows attackers to inject arbitrary script via name parameters.