Vulnerabilities > 1234N > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-24 | CVE-2021-33387 | Cross-site Scripting vulnerability in 1234N Minicms 1.10 Cross Site Scripting Vulnerability in MiniCMS v.1.10 allows attacker to execute arbitrary code via a crafted get request. | 9.6 |
| 2022-06-28 | CVE-2020-19896 | Unspecified vulnerability in 1234N Minicms 1.9 File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php. | 9.8 |
| 2021-01-05 | CVE-2020-36052 | Path Traversal vulnerability in 1234N Minicms 1.10 Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote attackers to include and execute arbitrary files via the state parameter. | 9.8 |
| 2018-11-01 | CVE-2018-18892 | Code Injection vulnerability in 1234N Minicms 1.10 MiniCMS 1.10 allows execution of arbitrary PHP code via the install.php sitename parameter, which affects the site_name field in mc_conf.php. | 9.8 |