VYPR

C1 CMS Foundation

by Orckestra

CVEs (2)

  • CVE-2022-39256Sep 27, 2022
    risk 0.00cvss epss 0.01

    Orckestra C1 CMS is a .NET based Web Content Management System. A vulnerability in versions prior to 6.13 allows remote attackers to execute arbitrary code on affected installations of Orckestra C1 CMS. Authentication is required to exploit this vulnerability. The authenticated…

  • CVE-2022-24789Mar 28, 2022
    risk 0.00cvss epss 0.01

    C1 CMS is an open-source, .NET based Content Management System (CMS). Versions prior to 6.12 allow an authenticated user to exploit Server Side Request Forgery (SSRF) by causing the server to make arbitrary GET requests to other servers in the local network or on localhost. The…