Vulnerabilities > Brassica

DATE CVE VULNERABILITY TITLE RISK
2020-09-18 CVE-2020-15189 Unrestricted Upload of File with Dangerous Type vulnerability in Brassica SOY CMS
SOY CMS 3.0.2 and earlier is affected by Remote Code Execution (RCE) using Unrestricted File Upload.
network
low complexity
brassica CWE-434
6.5
2020-09-18 CVE-2020-15188 Deserialization of Untrusted Data vulnerability in Brassica SOY CMS
SOY CMS 3.0.2.327 and earlier is affected by Unauthenticated Remote Code Execution (RCE).
network
brassica CWE-502
6.8
2019-04-20 CVE-2019-11376 Code Injection vulnerability in Brassica SOY CMS 3.0.2
SOY CMS v3.0.2 allows remote attackers to execute arbitrary PHP code via a <?php substring in the second text box.
network
low complexity
brassica CWE-94
7.2