VYPR

jizhicms

by Cherry Toto

CVEs (3)

  • CVE-2022-45278HigNov 23, 2022
    risk 0.57cvss 8.8epss 0.01

    Jizhicms v2.3.3 was discovered to contain a SQL injection vulnerability via the /index.php/admins/Fields/get_fields.html component.

  • CVE-2022-44140HigNov 23, 2022
    risk 0.57cvss 8.8epss 0.01

    Jizhicms v2.3.3 was discovered to contain a SQL injection vulnerability via the /Member/memberedit.html component.

  • CVE-2022-36577HigAug 19, 2022
    risk 0.57cvss 8.8epss 0.00

    An issue was discovered in jizhicms v2.3.1. There is a CSRF vulnerability that can add a admin.