High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-27	CVE-2023-39377	Unspecified vulnerability in Siberiancms SiberianCMS - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method network low complexity siberiancms	7.2
2023-09-27	CVE-2023-39378	Unspecified vulnerability in Siberiancms SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') by an unauthenticated user network low complexity siberiancms	8.8