RSS   Podatności dla 'QCMS'   RSS

2020-03-14
 
CVE-2020-10578

CWE-200
 

 
An arbitrary file read vulnerability exists in system/controller/backend/template.php in QCMS v3.0.1.

 
2018-08-06
 
CVE-2018-14978

CWE-352
 

 
An issue was discovered in QCMS 3.0.1. CSRF exists via the backend/user/admin/add.html URI.

 
 
CVE-2018-14977

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/guest.php has XSS, as demonstrated by the name parameter, a different vulnerability than CVE-2018-8070.

 
 
CVE-2018-14976

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS.

 
 
CVE-2018-14975

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS.

 
 
CVE-2018-14974

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS.

 
 
CVE-2018-14973

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS.

 
 
CVE-2018-14972

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS.

 
 
CVE-2018-14971

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS.

 
 
CVE-2018-14970

CWE-79
 

 
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS.

 


Copyright 2024, cxsecurity.com

 

Back to Top