Known Vulnerabilities for products from Chshcms
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Chshcms".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-29815 | mccms v2.6.3 is vulnerable to Cross Site Request Forgery (CSRF). | 8.8 - HIGH | 2023-04-28 | 2023-05-08 |
| CVE-2023-26782 | An issue discovered in mccms 2.6.1 allows remote attackers to cause a denial of service via Backend management interface ->Sy... | 6.5 - MEDIUM | 2023-04-28 | 2023-10-06 |
| CVE-2023-26781 | SQL injection vulnerability in mccms 2.6 allows remote attackers to run arbitrary SQL commands via Author Center ->Reader Com... | 9.8 - CRITICAL | 2023-04-28 | 2023-05-08 |
| CVE-2023-5029 | A vulnerability, which was classified as critical, was found in mccms 2.6. This affects an unknown part of the file /category... | 8.8 - HIGH | 2023-09-17 | 2023-11-07 |
| CVE-2023-3236 | A vulnerability classified as critical has been found in mccms up to 2.6.5. This affects the function pic_save of the file sy... | 8.8 - HIGH | 2023-06-14 | 2023-11-07 |
| CVE-2023-3235 | A vulnerability was found in mccms up to 2.6.5. It has been rated as critical. Affected by this issue is the function pic_api... | 8.8 - HIGH | 2023-06-14 | 2023-11-07 |
| CVE-2022-30898 | A Cross-site request forgery (CSRF) vulnerability in Cscms music portal system v4.2 allows remote attackers to change the adm... | 6.5 - MEDIUM | 2022-06-09 | 2022-06-17 |
| CVE-2022-29689 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29688 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29687 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29686 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29685 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 8.8 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29684 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29683 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29682 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29681 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29680 | CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.p... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29676 | CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29670 | CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic... | 7.2 - HIGH | 2022-05-26 | 2022-05-28 |
| CVE-2022-29669 | CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/new... | 8.8 - HIGH | 2022-05-26 | 2022-05-28 |
Known software with vulnerabilities from Chshcms
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Chshcms | Cscms | 3.5 |