← Back

Autocms

autocms

Vendor: Autocms Project • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-8866
1Autocms Project
1Autocms
Jun 17, 2026
Sep 15, 2024
6.9 MEDIUM· v4
6.1 MEDIUM· v3
5.0 MEDIUM· v2
A vulnerability was found in AutoCMS 5.4. It has been classified as problematic. This affects an unknown part of the file /admin/robot.php. The manipulation of the argument sidebar leads to cross site scripting. It is po...Show more
A vulnerability was found in AutoCMS 5.4. It has been classified as problematic. This affects an unknown part of the file /admin/robot.php. The manipulation of the argument sidebar leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2024-44725
1Autocms Project
1Autocms
Jun 17, 2026
Sep 9, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php.
CVE-2024-44724
1Autocms Project
1Autocms
Jun 17, 2026
Sep 9, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted va...Show more
AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php. This vulnerability allows attackers to execute arbitrary PHP code via injecting a crafted value.Show less