Vulnerabilities > Easycms > Easycms > 1.5

DATE CVE VULNERABILITY TITLE RISK
2019-01-15 CVE-2019-6294 Cross-Site Request Forgery (CSRF) vulnerability in Easycms 1.5
An issue was discovered in EasyCMS 1.5.
network
low complexity
easycms CWE-352
8.8
2018-09-17 CVE-2018-17113 Cross-site Scripting vulnerability in Easycms 1.5
App/Modules/Admin/Tpl/default/Public/dwz/uploadify/scripts/uploadify.swf in EasyCMS 1.5 has XSS via the uploadifyID or movieName parameter, a related issue to CVE-2018-9173.
network
low complexity
easycms CWE-79
6.1
2018-09-10 CVE-2018-16773 Cross-site Scripting vulnerability in Easycms 1.5
EasyCMS 1.5 allows XSS via the index.php?s=/admin/fields/update/navTabId/listfields/callbackType/closeCurrent content field.
network
low complexity
easycms CWE-79
4.8
2018-09-02 CVE-2018-16345 Cross-Site Request Forgery (CSRF) vulnerability in Easycms 1.5
An issue was discovered in EasyCMS 1.5.
network
low complexity
easycms CWE-352
8.8