Known Vulnerabilities for products from Chshcms
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Chshcms".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-29815 json | mccms v2.6.3 is vulnerable to Cross Site Request Forgery (CSRF). | 8.8 - HIGH | 2023-04-28 | 2023-05-08 |
| CVE-2023-26782 json | An issue discovered in mccms 2.6.1 allows remote attackers to cause a denial of service via Backend management interface ->Sy... | 6.5 - MEDIUM | 2023-04-28 | 2023-10-06 |
| CVE-2023-26781 json | SQL injection vulnerability in mccms 2.6 allows remote attackers to run arbitrary SQL commands via Author Center ->Reader Com... | 9.8 - CRITICAL | 2023-04-28 | 2023-05-08 |
| CVE-2023-5029 json | A vulnerability, which was classified as critical, was found in mccms 2.6. This affects an unknown part of the file /category... | 8.8 - HIGH | 2023-09-17 | 2023-11-07 |
| CVE-2023-3236 json | A vulnerability classified as critical has been found in mccms up to 2.6.5. This affects the function pic_save of the file sy... | 8.8 - HIGH | 2023-06-14 | 2023-11-07 |
| CVE-2023-3235 json | A vulnerability was found in mccms up to 2.6.5. It has been rated as critical. Affected by this issue is the function pic_api... | 8.8 - HIGH | 2023-06-14 | 2023-11-07 |
| CVE-2022-30898 json | A Cross-site request forgery (CSRF) vulnerability in Cscms music portal system v4.2 allows remote attackers to change the adm... | 6.5 - MEDIUM | 2022-06-09 | 2022-06-17 |
| CVE-2022-29689 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29688 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29687 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29686 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29685 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 8.8 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29684 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29683 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29682 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29681 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29680 json | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29676 json | CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29670 json | CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29669 json | CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/new... | 8.8 - HIGH | 2022-05-26 | 2022-05-28 |
Known software with vulnerabilities from Chshcms
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Chshcms | Cscms | 3.5 |