Vulnerabilities > Wbce > Wbce CMS > 1.1.3

DATE CVE VULNERABILITY TITLE RISK
2017-04-28 CVE-2017-2119 Path Traversal vulnerability in Wbce CMS
Directory traversal vulnerability in WBCE CMS 1.1.10 and earlier allows remote attackers to read arbitrary files via unspecified vectors.
network
low complexity
wbce CWE-22
8.6
8.6
2017-04-28 CVE-2017-2118 Cross-site Scripting vulnerability in Wbce CMS
Cross-site scripting vulnerability in WBCE CMS 1.1.10 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
low complexity
wbce CWE-79
6.1
6.1