Vulnerabilities > Sitemagic

DATE	CVE	VULNERABILITY TITLE	RISK
2019-10-23	CVE-2019-18220	Cross-Site Request Forgery (CSRF) vulnerability in Sitemagic 4.4.1 Sitemagic CMS 4.4.1 is affected by a Cross-Site-Request-Forgery (CSRF) issue as it doesn't implement any method to validate incoming requests, allowing the execution of critical functionalities via spoofed requests. network low complexity sitemagic CWE-352	8.8
2019-10-23	CVE-2019-18219	Cross-site Scripting vulnerability in Sitemagic 4.4.1 Sitemagic CMS 4.4.1 is affected by a Cross-Site-Scripting (XSS) vulnerability, as it fails to validate user input. network low complexity sitemagic CWE-79	6.1
2019-03-27	CVE-2019-10238	Cross-site Scripting vulnerability in Sitemagic 4.4 Sitemagic CMS v4.4 has XSS in SMFiles/FrmUpload.class.php via the filename parameter. network low complexity sitemagic CWE-79	6.1
2019-02-23	CVE-2019-9042	Unrestricted Upload of File with Dangerous Type vulnerability in Sitemagic CMS 4.4 An issue was discovered in Sitemagic CMS v4.4. network low complexity sitemagic CWE-434	7.2

Vulnerabilities > Sitemagic {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Sitemagic"}]}