CMS
by Elaniin
Source repositories
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2013-4621 | Cri | 0.64 | 9.8 | 0.02 | Dec 27, 2019 | Magnolia CMS before 4.5.9 has multiple access bypass vulnerabilities | ||
| CVE-2015-7567 | Cri | 0.60 | 9.8 | 0.04 | Feb 18, 2020 | SQL injection vulnerability in Yeager CMS 1.2.1 allows remote attackers to execute arbitrary SQL commands via the "passwordreset&token" parameter. | ||
| CVE-2020-36999 | Hig | 0.53 | 8.2 | 0.00 | Jan 29, 2026 | Elaniin CMS 1.0 contains an authentication bypass vulnerability that allows attackers to access the dashboard by manipulating the login page with SQL injection. Attackers can bypass authentication by sending crafted email and password parameters with '=''or' payload to… |
- risk 0.64cvss 9.8epss 0.02
Magnolia CMS before 4.5.9 has multiple access bypass vulnerabilities
- risk 0.60cvss 9.8epss 0.04
SQL injection vulnerability in Yeager CMS 1.2.1 allows remote attackers to execute arbitrary SQL commands via the "passwordreset&token" parameter.
- risk 0.53cvss 8.2epss 0.00
Elaniin CMS 1.0 contains an authentication bypass vulnerability that allows attackers to access the dashboard by manipulating the login page with SQL injection. Attackers can bypass authentication by sending crafted email and password parameters with '=''or' payload to…