Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Mipcms Subscribe
Filtered by product Mipcms
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-20582 1 Mipcms 1 Mipcms 2024-11-21 5.0 MEDIUM 7.5 HIGH
A server side request forgery (SSRF) vulnerability in /ApiAdminDomainSettings.php of MipCMS 5.0.1 allows attackers to access sensitive information.
CVE-2020-19264 1 Mipcms 1 Mipcms 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
A cross-site request forgery (CSRF) in MipCMS v5.0.1 allows attackers to arbitrarily add users via index.php?s=/user/ApiAdminUser/itemAdd.
CVE-2020-19263 1 Mipcms 1 Mipcms 2024-11-21 6.8 MEDIUM 8.8 HIGH
A cross-site request forgery (CSRF) in MipCMS v5.0.1 allows attackers to arbitrarily escalate user privileges to administrator via index.php?s=/user/ApiAdminUser/itemEdit.
CVE-2020-18132 1 Mipcms 1 Mipcms 2024-11-21 N/A 4.8 MEDIUM
Cross Site Scripting (XSS) vulnerability in MIPCMS 3.6.0 allows attackers to execute arbitrary code via the category name field to categoryEdit.

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024