Vulnerabilities > Greencms

DATE	CVE	VULNERABILITY TITLE	RISK
2018-11-20	CVE-2018-19376	Cross-Site Request Forgery (CSRF) vulnerability in Greencms 2.3.0603 An issue was discovered in GreenCMS v2.3.0603. network low complexity greencms CWE-352	6.5
2018-11-17	CVE-2018-19329	Path Traversal vulnerability in Greencms 2.3.0603 GreenCMS v2.3.0603 allows remote authenticated administrators to delete arbitrary files by modifying a base64-encoded pathname in an m=admin&c=media&a=delfilehandle&id= call, related to the m=admin&c=media&a=restorefile delete button. network low complexity greencms CWE-22	4.9
2018-06-29	CVE-2018-12988	Improper Input Validation vulnerability in Greencms 2.3.0603 GreenCMS 2.3.0603 has an arbitrary file download vulnerability via an index.php?m=admin&c=media&a=downfile URI. network low complexity greencms CWE-20	7.5

Vulnerabilities > Greencms {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Greencms"}]}