VYPR
Vendor

AutoCMS

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2024-44725HigSep 9, 2024
    risk 0.47cvss 7.2epss 0.00

    AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php.

  • CVE-2024-44724HigSep 9, 2024
    risk 0.47cvss 7.2epss 0.01

    AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value.

  • CVE-2024-8866MedSep 15, 2024
    risk 0.28cvss 4.3epss 0.01

    A vulnerability was found in AutoCMS 5.4. It has been classified as problematic. This affects an unknown part of the file /admin/robot.php. The manipulation of the argument sidebar leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has…