Vulnerabilities > Setucocms Project > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-12 | CVE-2016-4895 | Code Injection vulnerability in Setucocms Project Setucocms SetsucoCMS all versions allows remote authenticated attackers to conduct code injection attacks via unspecified vectors. | 8.8 |
| 2017-04-12 | CVE-2016-4893 | SQL Injection vulnerability in Setucocms Project Setucocms SQL injection vulnerability in the SetsucoCMS all versions allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors. | 8.8 |
| 2017-04-12 | CVE-2016-4891 | Cross-Site Request Forgery (CSRF) vulnerability in Setucocms Project Setucocms Cross-site request forgery (CSRF) vulnerability in SetsucoCMS all versions allows remote attackers to hijack the authentication of an administrator to change settings via unspecified vectors. | 8.8 |