Vendor
PortfolioCMS
Products
1
CVEs
2
Across products
2
Status
Private
Products
1- 2 CVEs
Recent CVEs
2| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-36532 | Hig | 0.53 | 8.1 | 0.01 | Feb 3, 2023 | Race condition vulnerability discovered in portfolioCMS 1.0 allows remote attackers to run arbitrary code via fileExt parameter to localhost/admin/uploads.php. | ||
| CVE-2018-12110 | Hig | 0.47 | 7.2 | 0.01 | Jun 11, 2018 | portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter. |
- risk 0.53cvss 8.1epss 0.01
Race condition vulnerability discovered in portfolioCMS 1.0 allows remote attackers to run arbitrary code via fileExt parameter to localhost/admin/uploads.php.
- risk 0.47cvss 7.2epss 0.01
portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.