VYPR
Vendor

Articlecms

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2020-28063CriMay 13, 2021
    risk 0.64cvss 9.8epss 0.01

    A file upload issue exists in all versions of ArticleCMS which allows malicious users to getshell.

  • CVE-2020-20092CriMay 13, 2021
    risk 0.64cvss 9.8epss 0.01

    File Upload vulnerability exists in ArticleCMS 1.0 via the image upload feature at /admin by changing the Content-Type to image/jpeg and placing PHP code after the JPEG data, which could let a remote malicious user execute arbitrary PHP code.

  • CVE-2018-19469MedNov 23, 2018
    risk 0.40cvss 6.1epss 0.01

    ArticleCMS through 2017-02-19 has XSS via the /update_personal_infomation realname or email parameter.

  • CVE-2018-12339MedJun 13, 2018
    risk 0.35cvss 5.4epss 0.00

    ArticleCMS through 2017-02-19 has XSS via an "add an article" action.