VYPR
Vendor

Dswjcms

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2020-19267CriSep 9, 2021
    risk 0.64cvss 9.8epss 0.02

    An issue in index.php/Dswjcms/Basis/resources of Dswjcms 1.6.4 allows attackers to execute arbitrary code via uploading a crafted PHP file.

  • CVE-2020-19266MedSep 9, 2021
    risk 0.40cvss 6.1epss 0.01

    A stored cross-site scripting (XSS) vulnerability in the index.php/Dswjcms/Site/articleList component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML.

  • CVE-2020-19268MedSep 9, 2021
    risk 0.37cvss 5.7epss 0.00

    A cross-site request forgery (CSRF) in index.php/Dswjcms/User/tfAdd of Dswjcms 1.6.4 allows authenticated attackers to arbitrarily add administrator users.