Vulnerabilities > Anchorcms > Anchor CMS > 0.9.2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-12-15 | CVE-2021-44116 | Cross-site Scripting vulnerability in Anchorcms Anchor CMS Cross Site Scripting (XSS) vulnerability exits in Anchor CMS <=0.12.7 in posts.php. | 4.3 |
2015-10-05 | CVE-2015-5687 | Code Injection vulnerability in Anchorcms Anchor CMS 0.9.1/0.9.2/0.9.3 system/session/drivers/cookie.php in Anchor CMS 0.9.x allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in a cookie. | 7.5 |