Vulnerabilities > Ucms Project > Ucms > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-09-21 | CVE-2018-17320 | Cross-site Scripting vulnerability in Ucms Project Ucms 1.4.6 An issue was discovered in UCMS 1.4.6. | 6.1 |
| 2018-09-14 | CVE-2018-17034 | Cross-site Scripting vulnerability in Ucms Project Ucms 1.4.6 UCMS 1.4.6 has XSS via the install/index.php mysql_dbname parameter. | 6.1 |