Vulnerabilities > Cxuu > Cxuucms > 3.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-29 | CVE-2021-42970 | Cross-site Scripting vulnerability in Cxuu Cxuucms 3.0 Cross Site Scripting (XSS) vulnerability exists in cxuucms v3 via the imgurl of /feedback/post/ content parameter. | 4.3 |
| 2020-12-27 | CVE-2020-29250 | Cross-site Scripting vulnerability in Cxuu Cxuucms 3.0 CXUUCMS V3 allows XSS via the first and third input fields to /public/admin.php. | 4.3 |
| 2020-12-27 | CVE-2020-29249 | Cross-site Scripting vulnerability in Cxuu Cxuucms 3.0 CXUUCMS V3 allows class="layui-input" XSS. | 4.3 |
| 2020-11-18 | CVE-2020-28091 | SQL Injection vulnerability in Cxuu Cxuucms 3.0 cxuucms v3 has a SQL injection vulnerability, which can lead to the leakage of all database data via the keywords parameter via search.php. | 5.0 |