VYPR

Gentics CMS

by Gentics

CVEs (2)

  • CVE-2022-30981HigJul 17, 2022
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in Gentics CMS before 5.43.1. By uploading a malicious ZIP file, an attacker is able to deserialize arbitrary data and hence can potentially achieve Java code execution.

  • CVE-2022-30982MedJul 17, 2022
    risk 0.35cvss 5.4epss 0.00

    An issue was discovered in Gentics CMS before 5.43.1. There is stored XSS in the profile description and in the username.