Filtered by vendor Laobancms
Subscribe
Search
Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-19224 | 1 Laobancms | 1 Laobancms | 2020-08-24 | 5.0 MEDIUM | 7.5 HIGH |
| An issue was discovered in LAOBANCMS 2.0. /admin/login.php allows spoofing of the id and guanliyuan cookies. | |||||
| CVE-2018-19228 | 1 Laobancms | 1 Laobancms | 2018-12-11 | 6.4 MEDIUM | 7.5 HIGH |
| An issue was discovered in LAOBANCMS 2.0. It allows arbitrary file deletion via ../ directory traversal in the admin/pic.php del parameter, as demonstrated by deleting install/install.txt to permit a reinstallation. | |||||
| CVE-2018-19225 | 1 Laobancms | 1 Laobancms | 2018-12-11 | 6.8 MEDIUM | 8.8 HIGH |
| An issue was discovered in LAOBANCMS 2.0. admin/mima.php has CSRF. | |||||