Vulnerabilities (CVE)

Filtered by vendor Setucocms Project Subscribe

Filtered by product Setucocms

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2016-4891	1 Setucocms Project	1 Setucocms	2017-05-23	6.8 MEDIUM	8.8 HIGH
Cross-site request forgery (CSRF) vulnerability in SetsucoCMS all versions allows remote attackers to hijack the authentication of an administrator to change settings via unspecified vectors.
CVE-2016-4893	1 Setucocms Project	1 Setucocms	2017-05-23	6.5 MEDIUM	8.8 HIGH
SQL injection vulnerability in the SetsucoCMS all versions allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2016-4895	1 Setucocms Project	1 Setucocms	2017-05-23	6.5 MEDIUM	8.8 HIGH
SetsucoCMS all versions allows remote authenticated attackers to conduct code injection attacks via unspecified vectors.