Vulnerabilities > Lightcms Project

DATE	CVE	VULNERABILITY TITLE	RISK
2024-01-29	CVE-2024-22559	Cross-site Scripting vulnerability in Lightcms Project Lightcms 2.0 LightCMS v2.0 is vulnerable to Cross Site Scripting (XSS) in the Content Management - Articles field. network low complexity lightcms-project CWE-79	5.4
2022-06-27	CVE-2022-33009	Cross-site Scripting vulnerability in Lightcms Project Lightcms 1.3.11 A stored cross-site scripting (XSS) vulnerability in LightCMS v1.3.11 allows attackers to execute arbitrary web scripts or HTML via uploading a crafted PDF file. network lightcms-project CWE-79	3.5
2021-04-15	CVE-2021-27112	Unspecified vulnerability in Lightcms Project Lightcms 1.3.5 LightCMS v1.3.5 contains a remote code execution vulnerability in /app/Http/Controllers/Admin/NEditorController.php during the downloading of external images. network low complexity lightcms-project	7.5
2021-02-24	CVE-2021-3355	Cross-site Scripting vulnerability in Lightcms Project Lightcms 1.3.4 A stored-self XSS exists in LightCMS v1.3.4, allowing an attacker to execute HTML or JavaScript code in a vulnerable Title field to /admin/SensitiveWords. network lightcms-project CWE-79	3.5

Vulnerabilities > Lightcms Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Lightcms Project"}]}