VYPR

JCMS

by Jalios

CVEs (2)

  • CVE-2020-15497Jul 17, 2020
    risk 0.00cvss epss 0.01

    jcore/portal/ajaxPortal.jsp in Jalios JCMS 10.0.2 build-20200224104759 allows XSS via the types parameter. Note: It is asserted that this vulnerability is not present in the standard installation of Jalios JCMS

  • CVE-2019-19033Nov 21, 2019
    risk 0.00cvss epss 0.03

    Jalios JCMS 10 allows attackers to access any part of the website and the WebDAV server with administrative privileges via a backdoor account, by using any username and the hardcoded dev password.