Vulnerabilities (CVE)

Filtered by vendor Rgcms Project Subscribe
Filtered by product Rgcms
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-21481 1 Rgcms Project 1 Rgcms 2024-02-28 6.5 MEDIUM 7.2 HIGH
An arbitrary file upload vulnerability in RGCMS v1.06 allows attackers to execute arbitrary code via a crafted .txt file which is later changed to a PHP file.
CVE-2020-21482 1 Rgcms Project 1 Rgcms 2024-02-28 3.5 LOW 5.4 MEDIUM
A cross-site scripting (XSS) vulnerability in RGCMS v1.06 allows attackers to obtain the administrator's cookie via a crafted payload in the Name field under the Message Board module
CVE-2020-21480 1 Rgcms Project 1 Rgcms 2024-02-28 6.5 MEDIUM 7.2 HIGH
An arbitrary file write vulnerability in RGCMS v1.06 allows attackers to execute arbitrary code via a crafted PHP file.