xiaocheng-keji/71cms

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Stars3

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-25187 ↗	Apr 2, 2024Tuesday, 2 April 2024, 04:15	8.6 HIGH	—
Server Side Request Forgery (SSRF) vulnerability in 71cms v1.0.0, allows remote unauthenticated attackers to obtain sensitive information via getweather.html.
CVE-2024-25166 ↗	Feb 27, 2024Tuesday, 27 February 2024, 01:15	6.1 MEDIUM	—
Cross Site Scripting vulnerability in 71CMS v.1.0.0 allows a remote attacker to execute arbitrary code via the uploadfile action parameter in the controller.php file.