Willow Cms

willow_cms

Vendor: Matthewdeaves • 2 CVEs

CVEs (2)

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

1Matthewdeaves

1Willow Cms

Apr 29, 2026

Oct 27, 2025

2.0 LOW· v4

7.2 HIGH· v3

5.8 MEDIUM· v2

A weakness has been identified in Willow CMS up to 1.4.0. Impacted is an unknown function of the file /admin/images/add. This manipulation causes unrestricted upload. Remote exploitation of the attack is possible. The ex...Show more

A weakness has been identified in Willow CMS up to 1.4.0. Impacted is an unknown function of the file /admin/images/add. This manipulation causes unrestricted upload. Remote exploitation of the attack is possible. The exploit has been made available to the public and could be exploited.Show less

1Matthewdeaves

1Willow Cms

Apr 29, 2026

Oct 27, 2025

1.9 LOW· v4

4.8 MEDIUM· v3

3.3 LOW· v2

A security flaw has been discovered in Willow CMS up to 1.4.0. This issue affects some unknown processing of the file /admin/articles/add of the component Add Post Page. The manipulation of the argument title/body result...Show more

A security flaw has been discovered in Willow CMS up to 1.4.0. This issue affects some unknown processing of the file /admin/articles/add of the component Add Post Page. The manipulation of the argument title/body results in cross site scripting. The attack may be launched remotely. The exploit has been released to the public and may be exploited.Show less