Cszcms CVE - OpenCVE

Filtered by vendor Cszcms Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2022-28997	1 Cszcms	1 Cszcms	2022-06-03	5.0 MEDIUM	7.5 HIGH
CSZCMS v1.3.0 allows attackers to execute a Server-Side Request Forgery (SSRF) which can be leveraged to leak sensitive data via a local file inclusion at /admin/filemanager/connector/.
CVE-2019-7566	1 Cszcms	1 Csz Cms	2019-02-07	6.8 MEDIUM	8.8 HIGH
CSZ CMS 1.1.8 has CSRF via admin/users/new/add.

Vulnerabilities (CVE)