VYPR

Vendor CVEs

S CMS

All CVEs

52 total · sorted by risk
  • CVE-2020-15188CriSep 18, 2020
    risk 0.00cvss 10.0epss 0.05

    SOY CMS 3.0.2.327 and earlier is affected by Unauthenticated Remote Code Execution (RCE). The allows remote attackers to execute any arbitrary code when the inquiry form feature is enabled by the service. The vulnerability is caused by unserializing the form without any…

  • CVE-2020-15182HigSep 17, 2020
    risk 0.00cvss 8.4epss 0.01

    The SOY Inquiry component of SOY CMS is affected by Cross-site Request Forgery (CSRF) and Remote Code Execution (RCE). The vulnerability affects versions 2.0.0.3 and earlier of SOY Inquiry. This allows remote attackers to force the administrator to edit files once the…

Page 2 of 2