Vendor
Dhcms
Products
1
CVEs
4
Across products
4
Status
Private
Products
1- 4 CVEs
Recent CVEs
4| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-28527 | Hig | 0.53 | 8.1 | 0.01 | Apr 26, 2022 | dhcms v20170919 was discovered to contain an arbitrary folder deletion vulnerability via /admin.php?r=admin/AdminBackup/del. | ||
| CVE-2020-19274 | Med | 0.40 | 6.1 | 0.01 | May 12, 2021 | A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code. | ||
| CVE-2020-19275 | Med | 0.35 | 5.3 | 0.01 | May 12, 2021 | An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path. | ||
| CVE-2019-9550 | Med | 0.31 | 4.8 | 0.01 | Mar 3, 2019 | DhCms through 2017-09-18 has admin.php?r=admin/Index/index XSS. |
- risk 0.53cvss 8.1epss 0.01
dhcms v20170919 was discovered to contain an arbitrary folder deletion vulnerability via /admin.php?r=admin/AdminBackup/del.
- risk 0.40cvss 6.1epss 0.01
A Cross SIte Scripting (XSS) vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code.
- risk 0.35cvss 5.3epss 0.01
An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path.
- risk 0.31cvss 4.8epss 0.01
DhCms through 2017-09-18 has admin.php?r=admin/Index/index XSS.