Vulnerabilities > Juzaweb

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-09	CVE-2023-46906	Unspecified vulnerability in Juzaweb CMS juzaweb <= 3.4 is vulnerable to Incorrect Access Control, resulting in an application outage after a 500 HTTP status code. network low complexity juzaweb	4.9
2023-10-28	CVE-2023-46467	Cross-site Scripting vulnerability in Juzaweb CMS Cross Site Scripting vulnerability in juzawebCMS v.3.4 and before allows a remote attacker to execute arbitrary code via a crafted payload to the username parameter of the registration page. network low complexity juzaweb CWE-79	5.4
2023-10-28	CVE-2023-46468	Injection vulnerability in Juzaweb CMS An issue in juzawebCMS v.3.4 and before allows a remote attacker to execute arbitrary code via a crafted file to the custom plugin function. local low complexity juzaweb CWE-74	7.8

Vulnerabilities > Juzaweb {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Juzaweb"}]}