Vulnerabilities > Ritecms > Ritecms > 3.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-25 | CVE-2023-44767 | Cross-site Scripting vulnerability in Ritecms 3.0 A File upload vulnerability in RiteCMS 3.0 allows a local attacker to upload a SVG file with XSS content. | 4.8 |
| 2023-10-04 | CVE-2023-43877 | Cross-site Scripting vulnerability in Ritecms 3.0 Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a payload crafted in the Home Page fields in the Administration menu. | 4.8 |
| 2023-09-28 | CVE-2023-43878 | Cross-site Scripting vulnerability in Ritecms 3.0 Rite CMS 3.0 has Multiple Cross-Site scripting (XSS) vulnerabilities that allow attackers to execute arbitrary code via a crafted payload into the Main Menu Items in the Administration Menu. | 5.4 |
| 2023-09-28 | CVE-2023-43879 | Cross-site Scripting vulnerability in Ritecms 3.0 Rite CMS 3.0 has a Cross-Site scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted payload into the Global Content Blocks in the Administration Menu. | 4.8 |