Vulnerabilities > Victor CMS Project > Victor CMS > 1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-10-27 | CVE-2020-23945 | SQL Injection vulnerability in Victor CMS Project Victor CMS 1.0 A SQL injection vulnerability exists in Victor CMS V1.0 in the cat_id parameter of the category.php file. | 5.0 |
| 2020-07-07 | CVE-2020-15599 | Cross-site Scripting vulnerability in Victor CMS Project Victor CMS 1.0/20180510/20190228 Victor CMS through 2019-02-28 allows XSS via the register.php user_firstname or user_lastname field. | 4.3 |