Vendor
Avscms
Products
1
CVEs
2
Across products
2
Status
Private
Products
1- 2 CVEs
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-51051 | Cri | 0.64 | 9.8 | 0.00 | Nov 18, 2024 | AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account. | ||
| CVE-2024-51053 | Cri | 0.64 | 9.8 | 0.00 | Nov 18, 2024 | An arbitrary file upload vulnerability in the component /main/fileupload.php of AVSCMS v8.2.0 allows attackers to execute arbitrary code via uploading a crafted file. |
- risk 0.64cvss 9.8epss 0.00
AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account.
- risk 0.64cvss 9.8epss 0.00
An arbitrary file upload vulnerability in the component /main/fileupload.php of AVSCMS v8.2.0 allows attackers to execute arbitrary code via uploading a crafted file.