Filtered by vendor S-cms Subscriptions
Total 42 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-18427 1 S-cms 1 S-cms 2024-11-21 N/A
s-cms 3.0 allows SQL Injection via the member/post.php 0_id parameter or the POST data to member/member_login.php.
CVE-2018-18426 1 S-cms 1 S-cms 2024-11-21 N/A
s-cms 3.0 allows remote attackers to execute arbitrary PHP code by placing this code in a crafted User-agent Disallow value in the robots.php txt parameter.