Filtered by vendor Cuppacms
Subscriptions
Total
25 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2022-24647 | 1 Cuppacms | 1 Cuppacms | 2024-08-03 | 8.1 High |
Cuppa CMS v1.0 was discovered to contain an arbitrary file deletion vulnerability via the unlink() function. | ||||
CVE-2022-24264 | 1 Cuppacms | 1 Cuppacms | 2024-08-03 | 7.5 High |
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/table_manager/ via the search_word parameter. | ||||
CVE-2022-24265 | 1 Cuppacms | 1 Cuppacms | 2024-08-03 | 7.5 High |
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/menu/ via the path=component/menu/&menu_filter=3 parameter. | ||||
CVE-2022-24266 | 1 Cuppacms | 1 Cuppacms | 2024-08-03 | 7.5 High |
Cuppa CMS v1.0 was discovered to contain a SQL injection vulnerability in /administrator/components/table_manager/ via the order_by parameter. | ||||
CVE-2023-39681 | 1 Cuppacms | 1 Cuppacms | 2024-08-02 | 9.8 Critical |
Cuppa CMS v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the email_outgoing parameter at /Configuration.php. This vulnerability is triggered via a crafted payload. |