Vulnerabilities > Abocms

DATE	CVE	VULNERABILITY TITLE	RISK
2024-03-15	CVE-2024-25227	SQL Injection vulnerability in Abocms Abo.Cms 5.8 SQL Injection vulnerability in ABO.CMS version 5.8, allows remote attackers to execute arbitrary code, cause a denial of service (DoS), escalate privileges, and obtain sensitive information via the tb_login parameter in admin login page. network low complexity abocms CWE-89 critical	9.8
2024-01-17	CVE-2023-48858	Cross-site Scripting vulnerability in Abocms Abo.Cms 5.9 A Cross-site scripting (XSS) vulnerability in login page php code in Armex ABO.CMS 5.9 allows remote attackers to inject arbitrary web script or HTML via the login.php? URL part. network low complexity abocms CWE-79	6.1
2024-01-17	CVE-2023-46952	Cross-site Scripting vulnerability in Abocms Abo.Cms 5.9.3 Cross Site Scripting vulnerability in ABO.CMS v.5.9.3 allows an attacker to execute arbitrary code via a crafted payload to the Referer header. network low complexity abocms CWE-79	6.1
2024-01-06	CVE-2023-46953	SQL Injection vulnerability in Abocms Abo.Cms 5.9.3 SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary code via the d parameter in the Documents module. network low complexity abocms CWE-89 critical	9.8

Vulnerabilities > Abocms {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Abocms"}]}