Known Vulnerabilities for Evolution CMS by Evo
Listed below are 3 of the newest known vulnerabilities associated with "Evolution CMS" by "Evo".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-43341 json | Cross-site scripting (XSS) vulnerability in evolution evo v.3.2.3 allows a local attacker to execute arbitrary code via a cra... | 6.1 - MEDIUM | 2023-10-19 | 2023-10-30 |
| CVE-2023-43340 json | Cross-site scripting (XSS) vulnerability in evolution v.3.2.3 allows a local attacker to execute arbitrary code via a crafted... | 5.2 - MEDIUM | 2023-10-19 | 2023-10-27 |
| CVE-2021-47939 json | Evolution CMS 3.1.6 contains a remote code execution vulnerability that allows authenticated users with module creation permi... | 5.2 - MEDIUM | 2026-05-10 | 2026-05-11 |
| CVE-2020-23238 json | Cross Site Scripting (XSS) vulnerability in Evolution CMS 2.0.2 via the Document Manager feature. | 5.4 - MEDIUM | 2021-07-26 | 2021-07-30 |