Vulnerabilities > Generic Content Management System Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-30 | CVE-2018-20590 | Cross-site Scripting vulnerability in Generic Content Management System Project Generic Content Management System Ivan Cordoba Generic Content Management System (CMS) through 2018-04-28 has XSS via the Administrator/users.php user ID. | 4.8 |
| 2018-12-30 | CVE-2018-20589 | Cross-site Scripting vulnerability in Generic Content Management System Project Generic Content Management System Ivan Cordoba Generic Content Management System (CMS) through 2018-04-28 has XSS via the Administrator/add_pictures.php article ID. | 4.8 |
| 2018-12-28 | CVE-2018-20569 | SQL Injection vulnerability in Generic Content Management System Project Generic Content Management System user/index.php in Ivan Cordoba Generic Content Management System (CMS) through 2018-04-28 allows SQL injection for authentication bypass. | 9.8 |
| 2018-12-28 | CVE-2018-20568 | SQL Injection vulnerability in Generic Content Management System Project Generic Content Management System Administrator/index.php in Ivan Cordoba Generic Content Management System (CMS) through 2018-04-28 allows SQL injection for authentication bypass. | 9.8 |