Vulnerabilities > Lightcms Project

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-29	CVE-2024-22559	Cross-site Scripting vulnerability in Lightcms Project Lightcms 2.0 LightCMS v2.0 is vulnerable to Cross Site Scripting (XSS) in the Content Management - Articles field. network low complexity lightcms-project CWE-79	5.4
2023-03-22	CVE-2023-27060	Unspecified vulnerability in Lightcms Project Lightcms 1.3.7 LightCMS v1.3.7 was discovered to contain a remote code execution (RCE) vulnerability via the image:make function. network low complexity lightcms-project critical	9.8
2022-06-27	CVE-2022-33009	Cross-site Scripting vulnerability in Lightcms Project Lightcms 1.3.11 A stored cross-site scripting (XSS) vulnerability in LightCMS v1.3.11 allows attackers to execute arbitrary web scripts or HTML via uploading a crafted PDF file. network low complexity lightcms-project CWE-79	4.8
2021-04-15	CVE-2021-27112	Unspecified vulnerability in Lightcms Project Lightcms 1.3.5 LightCMS v1.3.5 contains a remote code execution vulnerability in /app/Http/Controllers/Admin/NEditorController.php during the downloading of external images. network low complexity lightcms-project critical	9.8
2021-02-24	CVE-2021-3355	Cross-site Scripting vulnerability in Lightcms Project Lightcms 1.3.4 A stored-self XSS exists in LightCMS v1.3.4, allowing an attacker to execute HTML or JavaScript code in a vulnerable Title field to /admin/SensitiveWords. network low complexity lightcms-project CWE-79	5.4

Vulnerabilities > Lightcms Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Lightcms Project"}]}