Filtered by vendor Portfoliocms Project
Subscriptions
Filtered by product Portfoliocms
Subscriptions
Total
6 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-15849 | 1 Portfoliocms Project | 1 Portfoliocms | 2024-08-05 | N/A |
| An issue was discovered in portfolioCMS 1.0.5. There is CSRF to update the website settings via admin/aboutus.php. | ||||
| CVE-2018-15848 | 1 Portfoliocms Project | 1 Portfoliocms | 2024-08-05 | N/A |
| An issue was discovered in portfolioCMS 1.0.5. There is CSRF to create new pages via admin/portfolio.php?newpage=true. | ||||
| CVE-2018-12263 | 1 Portfoliocms Project | 1 Portfoliocms | 2024-08-05 | N/A |
| portfolioCMS 1.0.5 allows upload of arbitrary .php files via the admin/portfolio.php?newpage=true URI. | ||||
| CVE-2018-12110 | 1 Portfoliocms Project | 1 Portfoliocms | 2024-08-05 | N/A |
| portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter. | ||||
| CVE-2020-20402 | 1 Portfoliocms Project | 1 Portfoliocms | 2024-08-04 | 7.5 High |
| Westbrookadmin portfolioCMS v1.05 allows attackers to bypass password validation and access sensitive information via session fixation. | ||||
| CVE-2021-36532 | 1 Portfoliocms Project | 1 Portfoliocms | 2024-08-04 | 8.1 High |
| Race condition vulnerability discovered in portfolioCMS 1.0 allows remote attackers to run arbitrary code via fileExt parameter to localhost/admin/uploads.php. | ||||
Page 1 of 1.