VYPR

Portfoliocms

by Teklynk

Source repositories

CVEs (4)

  • CVE-2018-15848HigAug 25, 2018
    risk 0.57cvss 8.8epss 0.00

    An issue was discovered in portfolioCMS 1.0.5. There is CSRF to create new pages via admin/portfolio.php?newpage=true.

  • CVE-2018-12263HigJun 13, 2018
    risk 0.57cvss 8.8epss 0.01

    portfolioCMS 1.0.5 allows upload of arbitrary .php files via the admin/portfolio.php?newpage=true URI.

  • CVE-2018-12110HigJun 11, 2018
    risk 0.47cvss 7.2epss 0.01

    portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.

  • CVE-2018-15849MedAug 25, 2018
    risk 0.28cvss 4.3epss 0.00

    An issue was discovered in portfolioCMS 1.0.5. There is CSRF to update the website settings via admin/aboutus.php.