Vulnerabilities > Ed01 CMS Project > Ed01 CMS > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-26 | CVE-2022-28524 | SQL Injection vulnerability in Ed01-Cms Project Ed01-Cms 20180505 ED01-CMS v20180505 was discovered to contain a SQL injection vulnerability via the component post.php. | 9.8 |
| 2021-11-03 | CVE-2020-18262 | SQL Injection vulnerability in Ed01-Cms Project Ed01-Cms 1.0 ED01-CMS v1.0 was discovered to contain a SQL injection in the component cposts.php via the cid parameter. | 9.8 |
| 2021-11-03 | CVE-2020-18261 | Unrestricted Upload of File with Dangerous Type vulnerability in Ed01-Cms Project Ed01-Cms 1.0 An arbitrary file upload vulnerability in the image upload function of ED01-CMS v1.0 allows attackers to execute arbitrary commands. | 9.8 |