VYPR
Vendor

Source Trace

Products
3
CVEs
8
Across products
8
Status
Private

Products

3

Recent CVEs

8
  • CVE-2020-22334MedMay 8, 2023
    risk 0.42cvss 6.5epss 0.00

    Cross Site Request Forgery (CSRF) vulnerability in beescms v4 allows attackers to delete the administrator account via crafted request to /admin/admin_admin.php.

  • CVE-2020-36006MedJun 3, 2021
    risk 0.42cvss 6.5epss 0.01

    AppCMS 2.0.101 in /admin/info.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site.

  • CVE-2020-36005MedJun 3, 2021
    risk 0.42cvss 6.5epss 0.01

    AppCMS 2.0.101 in /admin/app.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site.

  • CVE-2020-36004MedJun 3, 2021
    risk 0.42cvss 6.5epss 0.01

    AppCMS 2.0.101 in /admin/download_frame.php has a SQL injection vulnerability which allows attackers to obtain sensitive database information.

  • CVE-2021-45380MedJan 23, 2022
    risk 0.40cvss 6.1epss 0.03

    AppCMS 2.0.101 has a XSS injection vulnerability in \templates\m\inc_head.php

  • CVE-2020-36007MedJun 3, 2021
    risk 0.40cvss 6.1epss 0.01

    AppCMS 2.0.101 in /admin/template/tpl_app.php has a cross site scripting attack vulnerability which allows the attacker to obtain sensitive information of other users.

  • CVE-2019-9595MedMar 6, 2019
    risk 0.40cvss 6.1epss 0.01

    AppCMS 2.0.101 allows XSS via the upload/callback.php params parameter.

  • CVE-2018-18723MedOct 29, 2018
    risk 0.31cvss 4.8epss 0.01

    An XSS issue was discovered in index.php/admin/area/editarea/id/110000 in YUNUCMS 1.1.5.