VYPR
Vendor

PortfolioCMS

Products
1
CVEs
2
Across products
2
Status
Private

Products

1

Recent CVEs

2
  • CVE-2021-36532HigFeb 3, 2023
    risk 0.53cvss 8.1epss 0.01

    Race condition vulnerability discovered in portfolioCMS 1.0 allows remote attackers to run arbitrary code via fileExt parameter to localhost/admin/uploads.php.

  • CVE-2018-12110HigJun 11, 2018
    risk 0.47cvss 7.2epss 0.01

    portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.