VYPR

Lin-CMS

by TaleLin

CVEs (2)

  • CVE-2020-18701CriAug 16, 2021
    risk 0.64cvss 9.8epss 0.02

    Incorrect Access Control in Lin-CMS-Flask v0.1.1 allows remote attackers to obtain sensitive information and/or gain privileges due to the application not invalidating a user's authentication token upon logout, which allows for replaying packets.

  • CVE-2025-15151LowDec 28, 2025
    risk 0.24cvss 3.7epss 0.00

    A vulnerability was determined in TaleLin Lin-CMS up to 0.6.0. This affects an unknown part of the file /tests/config.py of the component Tests Folder. This manipulation of the argument username/password causes password in configuration file. The attack is possible to be carried…