Vulnerabilities > Jeecms > Jeecms > 9.3
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-11-26 | CVE-2018-19545 | Cross-Site Request Forgery (CSRF) vulnerability in Jeecms 9.3 JEECMS 9.3 has CSRF via the api/admin/role/save URI to add a user. | 6.8 |
| 2018-11-26 | CVE-2018-19544 | Cross-Site Request Forgery (CSRF) vulnerability in Jeecms 9.3 JEECMS 9.3 has CSRF via the api/admin/content/save URI to add news. | 4.3 |
| 2018-11-05 | CVE-2018-18952 | Cross-site Scripting vulnerability in Jeecms 9.3 JEECMS 9.3 has XSS via an index.do#/content/update?type=update URI. | 3.5 |