Digicraft Software
Products
4- 5 CVEs
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
7| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-24223 | Cri | 0.72 | 9.8 | 0.62 | Feb 1, 2022 | AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php. | ||
| CVE-2022-28036 | Cri | 0.64 | 9.8 | 0.01 | Apr 12, 2022 | AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_navigation.php | ||
| CVE-2022-28035 | Cri | 0.64 | 9.8 | 0.01 | Apr 12, 2022 | Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_blur-save.php | ||
| CVE-2022-28034 | Cri | 0.64 | 9.8 | 0.01 | Apr 12, 2022 | AtomCMS 2.0 is vulnerabie to SQL Injection via Atom.CMS_admin_ajax_list-sort.php | ||
| CVE-2022-25489 | Med | 0.35 | 5.4 | 0.01 | Mar 15, 2022 | Atom CMS v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the "A" parameter in /widgets/debug.php. | ||
| CVE-2004-2184 | 0.04 | — | 0.08 | Dec 31, 2004 | Directory traversal vulnerability in Digicraft Yak! server 2.0 through 2.1.2 allows remote attackers to read or write arbitrary files via "../" or "..\" sequences in commands such as (1) dir or (2) put. | |||
| CVE-2023-53975 | 0.00 | — | 0.00 | Dec 22, 2025 | Atom CMS 2.0 contains an unauthenticated SQL injection vulnerability that allows remote attackers to manipulate database queries through unvalidated parameters. Attackers can inject malicious SQL code in the 'id' parameter of the admin index page to execute time-based blind SQL… |
- risk 0.72cvss 9.8epss 0.62
AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php.
- risk 0.64cvss 9.8epss 0.01
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_navigation.php
- risk 0.64cvss 9.8epss 0.01
Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_blur-save.php
- risk 0.64cvss 9.8epss 0.01
AtomCMS 2.0 is vulnerabie to SQL Injection via Atom.CMS_admin_ajax_list-sort.php
- risk 0.35cvss 5.4epss 0.01
Atom CMS v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the "A" parameter in /widgets/debug.php.
- CVE-2004-2184Dec 31, 2004risk 0.04cvss —epss 0.08
Directory traversal vulnerability in Digicraft Yak! server 2.0 through 2.1.2 allows remote attackers to read or write arbitrary files via "../" or "..\" sequences in commands such as (1) dir or (2) put.
- CVE-2023-53975Dec 22, 2025risk 0.00cvss —epss 0.00
Atom CMS 2.0 contains an unauthenticated SQL injection vulnerability that allows remote attackers to manipulate database queries through unvalidated parameters. Attackers can inject malicious SQL code in the 'id' parameter of the admin index page to execute time-based blind SQL…