Filtered by vendor Abocms Subscriptions
Filtered by product Abo.cms Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-48858 1 Abocms 1 Abo.cms 2024-11-21 6.1 Medium
A Cross-site scripting (XSS) vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part.
CVE-2023-46953 1 Abocms 1 Abo.cms 2024-11-21 9.8 Critical
SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary code via the d parameter in the Documents module.
CVE-2023-46952 1 Abocms 1 Abo.cms 2024-11-21 6.1 Medium
Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary code via a crafted payload to the Referer header.