RSS   Vulnerabilities for 'Portfoliocms'   RSS

2018-08-25
 
CVE-2018-15849

CWE-352
 

 
An issue was discovered in portfolioCMS 1.0.5. There is CSRF to update the website settings via admin/aboutus.php.

 
 
CVE-2018-15848

CWE-352
 

 
An issue was discovered in portfolioCMS 1.0.5. There is CSRF to create new pages via admin/portfolio.php?newpage=true.

 
2018-06-11
 
CVE-2018-12110

CWE-89
 

 
portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top