Gdidees Cms

gdidees_cms

Vendor: Gdidees • 5 CVEs

CVEs (5)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-46101 1Gdidees 1Gdidees Cms Apr 28, 2025 Sep 20, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 GDidees CMS <= v3.9.1 has a file upload vulnerability.
CVE-2023-44758 1Gdidees 1Gdidees Cms Nov 21, 2024 Oct 6, 2023 N/A· v4 5.4 MEDIUM· v3 N/A· v2 GDidees CMS 3.0 is affected by a Cross-Site Scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted payload to the Page Title.
CVE-2023-27179 1Gdidees 1Gdidees Cms Feb 11, 2025 Apr 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 GDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.
CVE-2023-27178 1Gdidees 1Gdidees Cms Feb 11, 2025 Apr 10, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An arbitrary file upload vulnerability in the upload function of GDidees CMS 3.9.1 allows attackers to execute arbitrary code via a crafted file.
CVE-2023-27180 1Gdidees 1Gdidees Cms Feb 12, 2025 Apr 7, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 GDidees CMS v3.9.1 was discovered to contain a source code disclosure vulnerability by the backup feature which is accessible via /_admin/backup.php.