VYPR

DBHcms

by DBHcms

CVEs (17)

  • CVE-2020-19889HigAug 24, 2020
    risk 0.57cvss 8.8epss 0.01

    DBHcms v1.2.0 has no CSRF protection mechanism,as demonstrated by CSRF for index.php?dbhcms_pid=-70 can add a user.

  • CVE-2020-19886HigAug 24, 2020
    risk 0.53cvss 8.1epss 0.00

    DBHcms v1.2.0 has no CSRF protection mechanism,as demonstrated by CSRF for an /index.php?dbhcms_pid=-80&deletemenu=9 can delete any menu.

  • CVE-2020-19878HigAug 24, 2020
    risk 0.49cvss 7.5epss 0.02

    DBHcms v1.2.0 has a sensitive information leaks vulnerability as there is no security access control in /dbhcms/ext/news/ext.news.be.php, A remote unauthenticated attacker can exploit this vulnerability to get path information.

  • CVE-2020-19891HigAug 24, 2020
    risk 0.47cvss 7.2epss 0.01

    DBHcms v1.2.0 has an Arbitrary file write vulnerability in dbhcms\mod\mod.editor.php $_POST['updatefile'] is filename and $_POST['tinymce_content'] is file content, there is no filter function for security. A remote authenticated admin user can exploit this vulnerability to get…

  • CVE-2020-19880MedAug 24, 2020
    risk 0.40cvss 6.1epss 0.01

    DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function form 'Name' in dbhcms\types.php, A remote unauthenticated attacker can exploit this vulnerability to hijack other users.

  • CVE-2020-19879MedAug 24, 2020
    risk 0.40cvss 6.1epss 0.01

    DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter of $_GET['dbhcms_pid'] variable in dbhcms\page.php line 107,

  • CVE-2020-19888MedAug 24, 2020
    risk 0.38cvss 5.9epss 0.01

    DBHcms v1.2.0 has an unauthorized operation vulnerability because there's no access control at line 175 of dbhcms\page.php for empty cache operation. This vulnerability can be exploited to empty a table.

  • CVE-2020-19877MedAug 24, 2020
    risk 0.35cvss 5.3epss 0.02

    DBHcms v1.2.0 has a directory traversal vulnerability as there is no directory control function in directory /dbhcms/. A remote unauthenticated attacker can exploit this vulnerability to obtain server-sensitive information.

  • CVE-2020-19890MedAug 24, 2020
    risk 0.32cvss 4.9epss 0.01

    DBHcms v1.2.0 has an Arbitrary file read vulnerability in dbhcms\mod\mod.editor.php $_GET['file'] is filename,and as there is no filter function for security, you can read any file's content.

  • CVE-2020-19887MedAug 24, 2020
    risk 0.31cvss 4.8epss 0.01

    DBHcms v1.2.0 has a stored XSS vulnerability as there is no htmlspecialchars function for '$_POST['pageparam_insert_description']' variable in dbhcms\mod\mod.page.edit.php line 227, A remote authenticated with admin user can exploit this vulnerability to hijack other users.

  • CVE-2020-19885MedAug 24, 2020
    risk 0.31cvss 4.8epss 0.01

    DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function for '$_POST['pageparam_insert_name']' variable in dbhcms\mod\mod.page.edit.php line 227, A remote authenticated with admin user can exploit this vulnerability to hijack other users.

  • CVE-2020-19884MedAug 24, 2020
    risk 0.31cvss 4.8epss 0.01

    DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function in dbhcms\mod\mod.domain.edit.php line 119.

  • CVE-2020-19883MedAug 24, 2020
    risk 0.31cvss 4.8epss 0.01

    DBHcms v1.2.0 has a stored xss vulnerability as there is no security filter in dbhcms\mod\mod.users.view.php line 57 for user_login, A remote authenticated with admin user can exploit this vulnerability to hijack other users.

  • CVE-2020-19882MedAug 24, 2020
    risk 0.31cvss 4.8epss 0.01

    DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function for 'menu_description' variable in dbhcms\mod\mod.menus.edit.php line 83 and in dbhcms\mod\mod.menus.view.php line 111, A remote authenticated with admin user can exploit this vulnerability to…

  • CVE-2020-19881MedAug 24, 2020
    risk 0.31cvss 4.8epss 0.01

    DBHcms v1.2.0 has a reflected xss vulnerability as there is no security filter in dbhcms\mod\mod.selector.php line 108 for $_GET['return_name'] parameter, A remote authenticated with admin user can exploit this vulnerability to hijack other users.

  • CVE-2010-4869Oct 5, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in DBHcms 1.1.4 allows remote attackers to execute arbitrary SQL commands via the editmenu parameter.

  • CVE-2008-1038Feb 27, 2008
    risk 0.03cvss epss 0.02

    PHP remote file inclusion vulnerability in mod/mod.extmanager.php in DBHcms 1.1.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the extmanager_install parameter.