Vulnerabilities > Wuzhicms > High

DATE CVE VULNERABILITY TITLE RISK
2018-07-20 CVE-2018-14472 SQL Injection vulnerability in Wuzhicms 4.1.0
An issue was discovered in WUZHI CMS 4.1.0.
network
low complexity
wuzhicms CWE-89
7.2
7.2
2018-05-26 CVE-2018-11493 Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms Wuzhi CMS 4.1.0
An issue was discovered in WUZHI CMS 4.1.0.
network
low complexity
wuzhicms CWE-352
8.8
8.8
2018-04-24 CVE-2018-10312 Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms Wuzhi CMS 4.1.0
index.php?m=member&v=pw_reset in WUZHI CMS 4.1.0 allows CSRF to change the password of a common member.
network
low complexity
wuzhicms CWE-352
8.8
8.8
2018-04-10 CVE-2018-9927 Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms 4.1.0
An issue was discovered in WUZHI CMS 4.1.0.
network
low complexity
wuzhicms CWE-352
8.8
8.8
2018-04-10 CVE-2018-9926 Cross-Site Request Forgery (CSRF) vulnerability in Wuzhicms 4.1.0
An issue was discovered in WUZHI CMS 4.1.0.
network
low complexity
wuzhicms CWE-352
8.8
8.8