Vulnerabilities > SEM CMS > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-14 | CVE-2023-50563 | SQL Injection vulnerability in Sem-Cms Semcms 4.8 Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMS_Function.php. | 9.8 |
| 2023-07-31 | CVE-2023-37647 | SQL Injection vulnerability in Sem-Cms Semcms 1.5 SEMCMS v1.5 was discovered to contain a SQL injection vulnerability via the id parameter at /Ant_Suxin.php. | 9.8 |
| 2023-06-30 | CVE-2020-18432 | Unrestricted Upload of File with Dangerous Type vulnerability in Sem-Cms Semcms 3.7 File Upload vulnerability in SEMCMS PHP 3.7 allows remote attackers to upload arbitrary files and gain escalated privileges. | 9.8 |
| 2023-05-19 | CVE-2023-31707 | SQL Injection vulnerability in Sem-Cms Semcms 1.5 SEMCMS 1.5 is vulnerable to SQL Injection via Ant_Rponse.php. | 9.8 |
| 2023-05-05 | CVE-2023-30090 | Unrestricted Upload of File with Dangerous Type vulnerability in Sem-Cms Semcms 4.2 Semcms Shop v4.2 was discovered to contain an arbitrary file uplaod vulnerability via the component SEMCMS_Upfile.php. | 9.8 |
| 2022-10-28 | CVE-2021-38217 | SQL Injection vulnerability in Sem-Cms Semcms 1.2 SEMCMS v 1.2 is vulnerable to SQL Injection via SEMCMS_User.php. | 9.8 |
| 2022-10-28 | CVE-2021-38729 | SQL Injection vulnerability in Sem-Cms Semcms 1.1 SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_Plist.php. | 9.8 |
| 2022-10-28 | CVE-2021-38730 | SQL Injection vulnerability in Sem-Cms Semcms 1.1 SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_Info.php. | 9.8 |
| 2022-10-28 | CVE-2021-38731 | SQL Injection vulnerability in Sem-Cms Semcms 1.1 SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_Zekou.php. | 9.8 |
| 2022-10-28 | CVE-2021-38732 | SQL Injection vulnerability in Sem-Cms Semcms 1.1 SEMCMS SHOP v 1.1 is vulnerable to SQL via Ant_Message.php. | 9.8 |