Vulnerabilities > Ed01 CMS Project > Ed01 CMS > 1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-03 | CVE-2020-18259 | Cross-site Scripting vulnerability in Ed01-Cms Project Ed01-Cms 1.0 ED01-CMS v1.0 was discovered to contain a reflective cross-site scripting (XSS) vulnerability in the component sposts.php. | 4.3 |
| 2021-11-03 | CVE-2020-18261 | Unrestricted Upload of File with Dangerous Type vulnerability in Ed01-Cms Project Ed01-Cms 1.0 An arbitrary file upload vulnerability in the image upload function of ED01-CMS v1.0 allows attackers to execute arbitrary commands. | 7.5 |
| 2021-11-03 | CVE-2020-18262 | SQL Injection vulnerability in Ed01-Cms Project Ed01-Cms 1.0 ED01-CMS v1.0 was discovered to contain a SQL injection in the component cposts.php via the cid parameter. | 7.5 |