Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown
CVE-2021-3264
Disclosure Date: August 27, 2021 (last updated February 23, 2025)
SQL Injection vulnerability in cxuucms 3.1 ivia the pid parameter in public/admin.php.
0
Attacker Value
Unknown
CVE-2021-39599
Disclosure Date: August 23, 2021 (last updated February 23, 2025)
Multiple Cross Site Scripting (XSS) vulnerabilities exists in CXUUCMS 3.1 in the search and c parameters in (1) public/search.php and in the (2) c parameter in admin.php.
0
Attacker Value
Unknown
CVE-2020-35347
Disclosure Date: December 26, 2020 (last updated February 22, 2025)
CXUUCMS V3 3.1 has a CSRF vulnerability that can add an administrator account via admin.php?c=adminuser&a=add.
0
Attacker Value
Unknown
CVE-2020-35346
Disclosure Date: December 26, 2020 (last updated February 22, 2025)
CXUUCMS V3 3.1 is affected by a reflected XSS vulnerability that allows remote attackers to inject arbitrary web script or HTML via the imgurl parameter of admin.php?c=content&a=add.
0
