Vulnerabilities (CVE)

Filtered by vendor Cmsuno Project Subscribe

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-15600	1 Cmsuno Project	1 Cmsuno	2022-01-04	4.3 MEDIUM	6.5 MEDIUM
An issue was discovered in CMSUno before 1.6.1. uno.php allows CSRF to change the admin password.
CVE-2021-36654	1 Cmsuno Project	1 Cmsuno	2021-08-11	3.5 LOW	5.4 MEDIUM
CMSuno 1.7 is vulnerable to an authenticated stored cross site scripting in modifying the filename parameter (tgo) while updating the theme.
CVE-2018-15567	1 Cmsuno Project	1 Cmsuno	2018-10-19	4.3 MEDIUM	6.1 MEDIUM
CMSUno before 1.5.3 has XSS via the title field.