Vulnerabilities > Showdoc > Showdoc > 2.9.5

DATE CVE VULNERABILITY TITLE RISK
2021-09-08 CVE-2021-36440 Unrestricted Upload of File with Dangerous Type vulnerability in Showdoc 2.9.5
Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the 'file_url' parameter in the component AdminUpdateController.class.php'.
network
low complexity
showdoc CWE-434
7.5
7.5
2021-08-04 CVE-2021-3678 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Showdoc
showdoc is vulnerable to Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
network
showdoc CWE-338
4.3
4.3
2021-08-04 CVE-2021-3680 Improper Verification of Cryptographic Signature vulnerability in Showdoc
showdoc is vulnerable to Missing Cryptographic Step
network
low complexity
showdoc CWE-347
4.9
4.9