1234n

Minicms

35 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2025-15458

Exploit
  • EPSS 0.46%
  • Veröffentlicht 05.01.2026 05:15:55
  • Zuletzt bearbeitet 15.01.2026 20:30:36

A vulnerability was determined in bg5sbk MiniCMS up to 1.8. This affects an unknown function of the file /mc-admin/post-edit.php of the component Article Handler. Executing a manipulation can lead to improper authentication. It is possible to launch ...

9.8

CVE-2025-15457

Exploit
  • EPSS 0.46%
  • Veröffentlicht 05.01.2026 04:32:05
  • Zuletzt bearbeitet 15.01.2026 20:25:32

A vulnerability was found in bg5sbk MiniCMS up to 1.8. The impacted element is an unknown function of the file /minicms/mc-admin/post.php of the component Trash File Restore Handler. Performing a manipulation results in improper authentication. It is...

7.5

CVE-2025-15456

Exploit
  • EPSS 0.24%
  • Veröffentlicht 05.01.2026 04:02:06
  • Zuletzt bearbeitet 16.01.2026 21:35:03

A vulnerability has been found in bg5sbk MiniCMS up to 1.8. The affected element is an unknown function of the file /mc-admin/page-edit.php of the component Publish Page Handler. Such manipulation leads to improper authentication. The attack may be p...

6.5

CVE-2025-15455

Exploit
  • EPSS 0.08%
  • Veröffentlicht 05.01.2026 03:32:06
  • Zuletzt bearbeitet 21.01.2026 22:01:58

A flaw has been found in bg5sbk MiniCMS up to 1.8. Impacted is the function delete_page of the file /minicms/mc-admin/page.php of the component File Recovery Request Handler. This manipulation causes improper authentication. The attack is possible to...

4.3

CVE-2024-9282

Exploit
  • EPSS 0.22%
  • Veröffentlicht 27.09.2024 13:15:18
  • Zuletzt bearbeitet 20.08.2025 12:18:40

A vulnerability was found in bg5sbk MiniCMS 1.11. It has been classified as problematic. Affected is an unknown function of the file page-edit.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. Th...

4.3

CVE-2024-9281

Exploit
  • EPSS 0.11%
  • Veröffentlicht 27.09.2024 13:15:18
  • Zuletzt bearbeitet 20.08.2025 12:16:38

A vulnerability was found in bg5sbk MiniCMS up to 1.11 and classified as problematic. This issue affects some unknown processing of the file post-edit.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. Th...

6.1

CVE-2024-31741

Exploit
  • EPSS 0.17%
  • Veröffentlicht 26.04.2024 22:15:08
  • Zuletzt bearbeitet 18.04.2025 18:42:58

Cross Site Scripting vulnerability in MiniCMS v.1.11 allows a remote attacker to run arbitrary code via crafted string in the URL after login.

5.4

CVE-2023-46378

Exploit
  • EPSS 0.09%
  • Veröffentlicht 31.10.2023 23:15:08
  • Zuletzt bearbeitet 21.11.2024 08:28:24

Stored Cross Site Scripting (XSS) vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php.

9.6

CVE-2021-33387

Exploit
  • EPSS 0.36%
  • Veröffentlicht 24.02.2023 16:15:11
  • Zuletzt bearbeitet 12.03.2025 16:15:15

Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request.

9.8

CVE-2020-19896

Exploit
  • EPSS 0.71%
  • Veröffentlicht 28.06.2022 22:15:07
  • Zuletzt bearbeitet 21.11.2024 05:09:28

File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php.