Vulnerabilities > Sdcms

DATE	CVE	VULNERABILITY TITLE	RISK
2019-03-11	CVE-2019-9652	Cross-Site Request Forgery (CSRF) vulnerability in Sdcms 1.7 There is a CSRF in SDCMS V1.7 via an m=admin&c=theme&a=edit request. network sdcms CWE-352	6.8
2019-03-11	CVE-2019-9651	Code Injection vulnerability in Sdcms 1.7 An issue was discovered in SDCMS V1.7. network low complexity sdcms CWE-94	7.5
2018-11-29	CVE-2018-19748	Path Traversal vulnerability in Sdcms 1.6 app/plug/attachment/controller/admincontroller.php in SDCMS 1.6 allows reading arbitrary files via a /?m=plug&c=admin&a=index&p=attachment&root= directory traversal. network low complexity sdcms CWE-22	5.0
2018-11-25	CVE-2018-19520	Code Injection vulnerability in multiple products An issue was discovered in SDCMS 1.6 with PHP 5.x. network low complexity sdcms php CWE-94	6.5
2018-05-12	CVE-2018-11004	Cross-Site Request Forgery (CSRF) vulnerability in Sdcms 1.5 An issue was discovered in SDcms v1.5. network sdcms CWE-352	6.8

Vulnerabilities > Sdcms {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Sdcms"}]}