Vulnerabilities > Ujcms > Jspxcms
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-06 | CVE-2024-1256 | Cross-site Scripting vulnerability in Ujcms Jspxcms 10.2.0 A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. | 4.3 |
| 2024-02-06 | CVE-2024-1257 | Cross-site Scripting vulnerability in Ujcms Jspxcms 10.2.0 A vulnerability was found in Jspxcms 10.2.0. | 6.1 |
| 2024-01-16 | CVE-2024-0599 | Cross-site Scripting vulnerability in Ujcms Jspxcms 10.2.0 A vulnerability was found in Jspxcms 10.2.0. | 5.4 |
| 2022-05-04 | CVE-2022-28090 | Server-Side Request Forgery (SSRF) vulnerability in Ujcms Jspxcms 10.2.0 Jspxcms v10.2.0 allows attackers to execute a Server-Side Request Forgery (SSRF) via /cmscp/ext/collect/fetch_url.do?url=. | 6.4 |
| 2022-02-04 | CVE-2022-23329 | Unrestricted Upload of File with Dangerous Type vulnerability in Ujcms Jspxcms 10.2.0 A vulnerability in ${"freemarker.template.utility.Execute"?new() of UJCMS Jspxcms v10.2.0 allows attackers to execute arbitrary commands via uploading malicious files. | 7.5 |