Vulnerabilities (CVE)

Filtered by vendor Hoosk Subscribe

Filtered by product Hoosk

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-26041	1 Hoosk	1 Hoosk	2020-10-02	7.5 HIGH	9.8 CRITICAL
An issue was discovered in Hoosk CmS v1.8.0. There is an Remote Code Execution vulnerability in install/index.php
CVE-2020-26042	1 Hoosk	1 Hoosk	2020-10-02	7.5 HIGH	9.8 CRITICAL
An issue was discovered in Hoosk CMS v1.8.0. There is a SQL injection vulnerability in install/index.php
CVE-2018-16771	1 Hoosk	1 Hoosk	2018-09-24	7.5 HIGH	9.8 CRITICAL
Hoosk v1.7.0 allows PHP code execution via a SiteUrl that is provided during installation and mishandled in config.php.