Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2
CVE-2020-15189
- EPSS 5.04%
- Veröffentlicht 18.09.2020 18:15:16
- Zuletzt bearbeitet 21.11.2024 05:05:02
SOY CMS 3.0.2 and earlier is affected by Remote Code Execution (RCE) using Unrestricted File Upload. Cross-Site Scripting(XSS) vulnerability that was used in CVE-2020-15183 can be used to increase impact by redirecting the administrator to access a s...
9.8
CVE-2020-15188
- EPSS 4.69%
- Veröffentlicht 18.09.2020 17:15:12
- Zuletzt bearbeitet 21.11.2024 05:05:02
SOY CMS 3.0.2.327 and earlier is affected by Unauthenticated Remote Code Execution (RCE). The allows remote attackers to execute any arbitrary code when the inquiry form feature is enabled by the service. The vulnerability is caused by unserializing ...
7.2
CVE-2019-11376
- EPSS 0.96%
- Veröffentlicht 20.04.2019 15:29:00
- Zuletzt bearbeitet 21.11.2024 04:20:59
SOY CMS v3.0.2 allows remote attackers to execute arbitrary PHP code via a <?php substring in the second text box. NOTE: the vendor indicates that there was an assumption that the content is "made editable on its own.
1