Vulnerabilities > Lmxcms > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-02-01 CVE-2022-48094 Files or Directories Accessible to External Parties vulnerability in Lmxcms 1.41
lmxcms v1.41 was discovered to contain an arbitrary file read vulnerability via TemplateAction.class.php.
network
low complexity
lmxcms CWE-552
4.9
4.9
2023-02-01 CVE-2023-23136 Path Traversal vulnerability in Lmxcms 1.41
lmxcms v1.41 was discovered to contain an arbitrary file deletion vulnerability via BackdbAction.class.php.
network
low complexity
lmxcms CWE-22
6.5
6.5