Vulnerabilities (CVE)

Filtered by vendor Xjd2020 Subscribe
Filtered by product Fastcms
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-1191 1 Xjd2020 1 Fastcms 2024-11-21 5.8 MEDIUM 4.7 MEDIUM
A vulnerability classified as problematic has been found in fastcms. This affects an unknown part of the file admin/TemplateController.java of the component ZIP File Handler. The manipulation leads to path traversal. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. This product does not use versioning. This is why information about affected and unaffected releases are unavailable. The associated identifier of this vulnerability is VDB-222363.
CVE-2022-4300 1 Xjd2020 1 Fastcms 2024-11-21 N/A 6.3 MEDIUM
A vulnerability was found in FastCMS. It has been rated as critical. This issue affects some unknown processing of the file /template/edit of the component Template Handler. The manipulation leads to injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214901 was assigned to this vulnerability.
CVE-2024-7733 1 Xjd2020 1 Fastcms 2024-09-12 4.0 MEDIUM 5.4 MEDIUM
A vulnerability, which was classified as problematic, was found in FastCMS up to 0.1.5. Affected is an unknown function of the component New Article Category Page. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.