High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-31	CVE-2023-7190	SQL Injection vulnerability in S-Cms 1.0/1.5/2.0 A vulnerability, which was classified as critical, has been found in S-CMS up to 2.0_build20220529-20231006. network low complexity s-cms CWE-89	8.8
2023-12-31	CVE-2023-7191	SQL Injection vulnerability in S-Cms 1.0/1.5/2.0 A vulnerability, which was classified as critical, was found in S-CMS up to 2.0_build20220529-20231006. network low complexity s-cms CWE-89	8.8
2023-12-31	CVE-2023-7189	SQL Injection vulnerability in S-Cms 1.0/1.5/2.0 A vulnerability classified as critical was found in S-CMS up to 2.0_build20220529-20231006. network low complexity s-cms CWE-89	8.8
2023-05-05	CVE-2023-29963	Unspecified vulnerability in S-Cms 5.0 S-CMS v5.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the component /admin/ajax.php. network low complexity s-cms	7.2
2022-02-14	CVE-2022-23336	SQL Injection vulnerability in S-Cms 5.0 S-CMS v5.0 was discovered to contain a SQL injection vulnerability in member_pay.php via the O_id parameter. network low complexity s-cms CWE-89	7.5
2019-04-02	CVE-2019-10708	SQL Injection vulnerability in S-Cms 1.0 S-CMS PHP v1.0 has SQL injection via the 4/js/scms.php?action=unlike id parameter. network low complexity s-cms CWE-89	7.5
2019-01-25	CVE-2019-6805	SQL Injection vulnerability in S-Cms 3.0 SQL Injection was found in S-CMS version V3.0 via the alipay/alipayapi.php O_id parameter. network low complexity s-cms CWE-89	7.5
2018-12-26	CVE-2018-20480	SQL Injection vulnerability in S-Cms 1.0 An issue was discovered in S-CMS 1.0. network low complexity s-cms CWE-89	7.5
2018-12-26	CVE-2018-20479	SQL Injection vulnerability in S-Cms 1.0 An issue was discovered in S-CMS 1.0. network low complexity s-cms CWE-89	7.5
2018-11-01	CVE-2018-18887	SQL Injection vulnerability in S-Cms 1.0 S-CMS PHP 1.0 has SQL injection in member/member_news.php via the type parameter (aka the $N_type field). network low complexity s-cms CWE-89	7.5