VYPR

Onefilecms

by Jspit

CVEs (3)

  • CVE-2018-12995HigJun 29, 2018
    risk 0.57cvss 8.8epss 0.01

    onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to execute arbitrary PHP code via a .php filename on the Upload screen.

  • CVE-2018-12994HigJun 29, 2018
    risk 0.57cvss 8.8epss 0.01

    onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to execute arbitrary PHP code via a .php filename on the New File screen.

  • CVE-2019-8408Feb 17, 2019
    risk 0.00cvss epss 0.01

    OneFileCMS 3.6.13 allows remote attackers to modify onefilecms.php by clicking the Copy button twice.