Filtered by vendor 8cms
Subscribe
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-21237 | 1 8cms | 1 Ljcms | 2024-11-21 | 5.0 MEDIUM | 9.8 CRITICAL |
An issue in the user login box of LJCMS v1.11 allows attackers to hijack user accounts via brute force attacks. | |||||
CVE-2020-20979 | 1 8cms | 1 Ljcms | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
An arbitrary file upload vulnerability in the move_uploaded_file() function of LJCMS v4.3 allows attackers to execute arbitrary code. | |||||
CVE-2020-20735 | 1 8cms | 1 Ljcms | 2024-11-21 | N/A | 9.8 CRITICAL |
File Upload vulnerability in LJCMS v.4.3.R60321 allows a remote attacker to execute arbitrary code via the ljcms/index.php parameter. | |||||
CVE-2020-20583 | 1 8cms | 1 Ljcms | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
A SQL injection vulnerability in /question.php of LJCMS Version v4.3.R60321 allows attackers to obtain sensitive database information. |