Vulnerabilities > Boidcms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-25 | CVE-2024-53255 | Unspecified vulnerability in Boidcms 2.0.0/2.0.1 BoidCMS is a free and open-source flat file CMS for building simple websites and blogs, developed using PHP and uses JSON as a database. | 5.4 |
| 2023-12-07 | CVE-2023-48824 | Cross-site Scripting vulnerability in Boidcms 2.0.1 BoidCMS 2.0.1 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the title, subtitle, footer, or keywords parameter in a page=create action. | 5.4 |
| 2023-08-21 | CVE-2023-38836 | Unrestricted Upload of File with Dangerous Type vulnerability in Boidcms 2.0.0 File Upload vulnerability in BoidCMS v.2.0.0 allows a remote attacker to execute arbitrary code by adding a GIF header to bypass MIME type checks. | 8.8 |