Filtered by vendor Myucms Project Subscriptions
Filtered by product Myucms Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-21652 1 Myucms Project 1 Myucms 2024-08-04 9.8 Critical
Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\Config.php, which can be exploited via the addqq() method.
CVE-2020-21651 1 Myucms Project 1 Myucms 2024-08-04 9.8 Critical
Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\point.php, which can be exploited via the add() method.
CVE-2020-21650 1 Myucms Project 1 Myucms 2024-08-04 8.8 High
Myucms v2.2.1 contains a remote code execution (RCE) vulnerability in the component \controller\Config.php, which can be exploited via the add() method.
CVE-2020-21653 1 Myucms Project 1 Myucms 2024-08-04 9.1 Critical
Myucms v2.2.1 contains a server-side request forgery (SSRF) in the component \controller\index.php, which can be exploited via the sj() method.
CVE-2020-21649 1 Myucms Project 1 Myucms 2024-08-04 8.1 High
Myucms v2.2.1 contains a server-side request forgery (SSRF) in the component \controller\index.php, which can be exploited via the sql() method.