Vulnerabilities > Sentcms

DATE CVE VULNERABILITY TITLE RISK
2022-03-10 CVE-2022-24651 Unrestricted Upload of File with Dangerous Type vulnerability in Sentcms 4.0.0
sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in PHP code execution through /user/upload/upload.
network
low complexity
sentcms CWE-434
7.5
2022-03-10 CVE-2022-24652 Unrestricted Upload of File with Dangerous Type vulnerability in Sentcms 4.0.0
sentcms 4.0.x allows remote attackers to cause arbitrary file uploads through an unauthorized file upload interface, resulting in php code execution in /admin/upload/upload.
network
low complexity
sentcms CWE-434
7.5