Vulnerabilities > Thedigitalcraft

DATE	CVE	VULNERABILITY TITLE	RISK
2022-04-12	CVE-2022-28032	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php network low complexity thedigitalcraft CWE-89	7.5
2022-04-12	CVE-2022-28033	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_uploads.php network low complexity thedigitalcraft CWE-89	7.5
2022-04-12	CVE-2022-28034	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 AtomCMS 2.0 is vulnerabie to SQL Injection via Atom.CMS_admin_ajax_list-sort.php network low complexity thedigitalcraft CWE-89	7.5
2022-04-12	CVE-2022-28035	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_blur-save.php network low complexity thedigitalcraft CWE-89	7.5
2022-04-12	CVE-2022-28036	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_navigation.php network low complexity thedigitalcraft CWE-89	7.5
2022-03-15	CVE-2022-25487	Unrestricted Upload of File with Dangerous Type vulnerability in Thedigitalcraft Atomcms 2.0 Atom CMS v2.0 was discovered to contain a remote code execution (RCE) vulnerability via /admin/uploads.php. network low complexity thedigitalcraft CWE-434	7.5
2022-03-15	CVE-2022-25488	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 Atom CMS v2.0 was discovered to contain a SQL injection vulnerability via the id parameter in /admin/ajax/avatar.php. network low complexity thedigitalcraft CWE-89	7.5
2022-03-15	CVE-2022-25489	Cross-site Scripting vulnerability in Thedigitalcraft Atomcms 2.0 Atom CMS v2.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the "A" parameter in /widgets/debug.php. network thedigitalcraft CWE-79	3.5
2022-02-01	CVE-2022-24223	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php. network low complexity thedigitalcraft CWE-89	7.5
2014-07-10	CVE-2014-4852	SQL Injection vulnerability in Thedigitalcraft Atomcms 2.0 SQL injection vulnerability in admin/uploads.php in The Digital Craft AtomCMS, possibly 2.0, allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity thedigitalcraft CWE-89	7.5

Vulnerabilities > Thedigitalcraft {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Thedigitalcraft"}]}

Vulnerabilities > Thedigitalcraft