Vulnerabilities > MAX 3000 > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-28 | CVE-2022-25411 | Unrestricted Upload of File with Dangerous Type vulnerability in Max-3000 Maxsite CMS 108 A Remote Code Execution (RCE) vulnerability at /admin/options in Maxsite CMS v180 allows attackers to execute arbitrary code via a crafted PHP file. | 9.8 |
| 2021-12-10 | CVE-2021-27983 | Unspecified vulnerability in Max-3000 Maxsite CMS 107.5 Remote Code Execution (RCE) vulnerability exists in MaxSite CMS v107.5 via the Documents page. | 9.8 |