Vulnerabilities > Wtcms Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-01 | CVE-2020-20343 | Cross-Site Request Forgery (CSRF) vulnerability in Wtcms Project Wtcms 1.0 WTCMS 1.0 contains a cross-site request forgery (CSRF) vulnerability in the index.php?g=admin&m=nav&a=add_post component that allows attackers to arbitrarily add articles in the administrator background. | 6.5 |
| 2021-09-01 | CVE-2020-20344 | Cross-site Scripting vulnerability in Wtcms Project Wtcms 1.0 WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerability in the keyword search function under the background articles module. | 5.4 |
| 2021-09-01 | CVE-2020-20345 | Cross-site Scripting vulnerability in Wtcms Project Wtcms 1.0 WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerability in the page management background which allows attackers to obtain cookies via a crafted payload entered into the search box. | 5.4 |
| 2021-09-01 | CVE-2020-20347 | Cross-site Scripting vulnerability in Wtcms Project Wtcms 1.0 WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the source field under the article management module. | 5.4 |
| 2021-09-01 | CVE-2020-20348 | Cross-site Scripting vulnerability in Wtcms Project Wtcms 1.0 WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the link field under the background menu management module. | 5.4 |
| 2021-09-01 | CVE-2020-20349 | Cross-site Scripting vulnerability in Wtcms Project Wtcms 1.0 WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the link address field under the background links module. | 5.4 |
| 2019-09-23 | CVE-2019-16719 | Cross-site Scripting vulnerability in Wtcms Project Wtcms 1.0 WTCMS 1.0 allows index.php?g=admin&m=index&a=index CSRF with resultant XSS. | 6.5 |
| 2019-02-18 | CVE-2019-8911 | Cross-site Scripting vulnerability in Wtcms Project Wtcms 1.0 An issue was discovered in WTCMS 1.0. | 6.1 |
| 2019-02-18 | CVE-2019-8910 | Cross-Site Request Forgery (CSRF) vulnerability in Wtcms Project Wtcms 1.0 An issue was discovered in WTCMS 1.0. | 8.8 |
| 2019-02-18 | CVE-2019-8909 | Resource Exhaustion vulnerability in Wtcms Project Wtcms 1.0 An issue was discovered in WTCMS 1.0. | 7.5 |