Known Vulnerabilities for products from Ritecms
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Ritecms".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-44767 json | A File upload vulnerability in RiteCMS 3.0 allows a local attacker to upload a SVG file with XSS content. | 4.8 - MEDIUM | 2023-10-25 | 2023-11-01 |
| CVE-2023-43879 json | Rite CMS 3.0 has a Cross-Site scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted pay... | 4.8 - MEDIUM | 2023-09-28 | 2023-09-29 |
| CVE-2023-43878 json | Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a cra... | 5.4 - MEDIUM | 2023-09-28 | 2023-09-29 |
| CVE-2023-43877 json | Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a pay... | 4.8 - MEDIUM | 2023-10-04 | 2023-10-20 |
| CVE-2022-24248 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-04-12 | 2022-04-20 |
| CVE-2022-24247 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-04-12 | 2022-04-19 |
| CVE-2021-46367 json | RiteCMS version 3.1.0 and below suffers from a remote code execution vulnerability in the admin panel. An authenticated attac... | 7.2 - HIGH | 2022-04-08 | 2022-04-14 |
| CVE-2020-23934 json | An issue was discovered in RiteCMS 2.2.1. An authenticated user can directly execute system commands by uploading a php web s... | 8.8 - HIGH | 2020-08-18 | 2020-08-26 |
| CVE-2013-5317 json | Cross-site scripting (XSS) vulnerability in RiteCMS 1.0.0 allows remote authenticated users to inject arbitrary web script or... | 3.5 - LOW | 2013-08-20 | 2017-08-29 |
| CVE-2013-5316 json | Cross-site request forgery (CSRF) vulnerability in RiteCMS 1.0.0 allows remote attackers to hijack the authentication of admi... | 6.8 - MEDIUM | 2013-08-20 | 2017-08-29 |
Known software with vulnerabilities from Ritecms
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Ritecms | Ritecms | 1.0 |