Vulnerabilities > Sscms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-24 | CVE-2023-2862 | Cross-site Scripting vulnerability in Sscms Siteserver CMS A vulnerability, which was classified as problematic, was found in SiteServer CMS up to 7.2.1. | 6.1 |
| 2023-02-16 | CVE-2022-44299 | Path Traversal vulnerability in Sscms Siteserver CMS 7.1.3 SiteServerCMS 7.1.3 sscms has a file read vulnerability. | 4.9 |
| 2023-01-27 | CVE-2022-44298 | SQL Injection vulnerability in Sscms Siteserver CMS 7.1.3 SiteServer CMS 7.1.3 is vulnerable to SQL Injection. | 9.8 |
| 2023-01-26 | CVE-2022-44297 | SQL Injection vulnerability in Sscms Siteserver CMS 7.1.3 SiteServer CMS 7.1.3 has a SQL injection vulnerability the background. | 9.8 |
| 2022-06-02 | CVE-2022-30349 | Cross-site Scripting vulnerability in Sscms Siteserver CMS 6.15.51 siteserver SSCMS 6.15.51 is vulnerable to Cross Site Scripting (XSS). | 4.3 |
| 2022-05-24 | CVE-2021-42654 | Unrestricted Upload of File with Dangerous Type vulnerability in Sscms Siteserver CMS SiteServer CMS < V5.1 is affected by an unrestricted upload of a file with dangerous type (getshell), which could be used to execute arbitrary code. | 7.5 |
| 2022-05-24 | CVE-2021-42655 | SQL Injection vulnerability in Sscms Siteserver CMS 6.15.51 SiteServer CMS V6.15.51 is affected by a SQL injection vulnerability. | 6.5 |
| 2022-05-24 | CVE-2021-42656 | Cross-site Scripting vulnerability in Sscms Siteserver CMS 6.15.51 SiteServer CMS V6.15.51 is affected by a Cross Site Scripting (XSS) vulnerability. | 3.5 |
| 2022-05-03 | CVE-2022-28118 | Unspecified vulnerability in Sscms Siteserver CMS SiteServer CMS v7.x allows attackers to execute arbitrary code via a crafted plug-in. | 7.5 |