Vulnerabilities > S CMS > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-12-26 CVE-2018-20479 SQL Injection vulnerability in S-Cms 1.0
An issue was discovered in S-CMS 1.0.
network
low complexity
s-cms CWE-89
critical
 9.8
9.8
2018-12-26 CVE-2018-20477 SQL Injection vulnerability in S-Cms 3.0
An issue was discovered in S-CMS 3.0.
network
low complexity
s-cms CWE-89
critical
 9.8
9.8
2018-11-01 CVE-2018-18887 SQL Injection vulnerability in S-Cms 1.0
S-CMS PHP 1.0 has SQL injection in member/member_news.php via the type parameter (aka the $N_type field).
network
low complexity
s-cms CWE-89
critical
 9.8
9.8
2018-10-17 CVE-2018-18427 SQL Injection vulnerability in S-Cms 3.0
s-cms 3.0 allows SQL Injection via the member/post.php 0_id parameter or the POST data to member/member_login.php.
network
low complexity
s-cms CWE-89
critical
 9.8
9.8