VYPR
Vendor

RGCMS

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2020-21481HigSep 15, 2021
    risk 0.47cvss 7.2epss 0.02

    An arbitrary file upload vulnerability in RGCMS v1.06 allows attackers to execute arbitrary code via a crafted .txt file which is later changed to a PHP file.

  • CVE-2020-21480HigSep 15, 2021
    risk 0.47cvss 7.2epss 0.02

    An arbitrary file write vulnerability in RGCMS v1.06 allows attackers to execute arbitrary code via a crafted PHP file.

  • CVE-2020-21482MedSep 15, 2021
    risk 0.35cvss 5.4epss 0.01

    A cross-site scripting (XSS) vulnerability in RGCMS v1.06 allows attackers to obtain the administrator's cookie via a crafted payload in the Name field under the Message Board module