Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2020-20092
- EPSS 0.43%
- Published 13.05.2021 15:15:07
- Last modified 21.11.2024 05:11:49
File Upload vulnerability exists in ArticleCMS 1.0 via the image upload feature at /admin by changing the Content-Type to image/jpeg and placing PHP code after the JPEG data, which could let a remote malicious user execute arbitrary PHP code.
9.8
CVE-2020-28063
- EPSS 0.43%
- Published 13.05.2021 15:15:07
- Last modified 21.11.2024 05:22:17
A file upload issue exists in all versions of ArticleCMS which allows malicious users to getshell.
6.1
CVE-2018-19469
- EPSS 0.22%
- Published 23.11.2018 05:29:03
- Last modified 21.11.2024 03:57:59
ArticleCMS through 2017-02-19 has XSS via the /update_personal_infomation realname or email parameter.
5.4
CVE-2018-12339
- EPSS 0.19%
- Published 13.06.2018 19:29:00
- Last modified 21.11.2024 03:45:01
ArticleCMS through 2017-02-19 has XSS via an "add an article" action.
1