Vulnerabilities > Tpcms Project > Tpcms > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-03 | CVE-2021-36544 | Information Exposure Through Log Files vulnerability in Tpcms Project Tpcms 3.2 Incorrect Access Control issue discovered in tpcms 3.2 allows remote attackers to view sensitive information via path in application URL. | 7.5 |
| 2022-06-02 | CVE-2022-29624 | Unrestricted Upload of File with Dangerous Type vulnerability in Tpcms Project Tpcms 3.2 An arbitrary file upload vulnerability in the Add File function of TPCMS v3.2 allows attackers to execute arbitrary code via a crafted PHP file. | 8.8 |
| 2022-04-04 | CVE-2022-27442 | Information Exposure Through Log Files vulnerability in Tpcms Project Tpcms 3.2 TPCMS v3.2 allows attackers to access the ThinkPHP log directory and obtain sensitive information such as the administrator's user name and password. | 7.5 |