Vulnerabilities > Easycms > Easycms > 1.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-01-15 | CVE-2019-6294 | Cross-Site Request Forgery (CSRF) vulnerability in Easycms 1.5 An issue was discovered in EasyCMS 1.5. | 8.8 |
| 2018-09-17 | CVE-2018-17113 | Cross-site Scripting vulnerability in Easycms 1.5 App/Modules/Admin/Tpl/default/Public/dwz/uploadify/scripts/uploadify.swf in EasyCMS 1.5 has XSS via the uploadifyID or movieName parameter, a related issue to CVE-2018-9173. | 6.1 |
| 2018-09-10 | CVE-2018-16773 | Cross-site Scripting vulnerability in Easycms 1.5 EasyCMS 1.5 allows XSS via the index.php?s=/admin/fields/update/navTabId/listfields/callbackType/closeCurrent content field. | 4.8 |
| 2018-09-02 | CVE-2018-16345 | Cross-Site Request Forgery (CSRF) vulnerability in Easycms 1.5 An issue was discovered in EasyCMS 1.5. | 8.8 |