Vulnerabilities (CVE)

Filtered by vendor Newsone Cms Project Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-21976 1 Newsone Cms Project 1 Newsone Cms 2024-11-21 9.0 HIGH 8.8 HIGH
An arbitrary file upload in the <input type="file" name="user_image"> component of NewsOne CMS v1.1.0 allows attackers to webshell and execute arbitrary commands.