← Back

Siteserver Cms

siteserver_cms

Vendor: Siteserver • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-11401
1Siteserver
1Siteserver Cms
Jun 17, 2026
Apr 22, 2019
N/A· v4
7.2 HIGH· v3
6.5 MEDIUM· v2
A issue was discovered in SiteServer CMS 6.9.0. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" subst...Show more
A issue was discovered in SiteServer CMS 6.9.0. It allows remote attackers to execute arbitrary code because an administrator can add the permitted file extension .aassp, which is converted to .asp because the "as" substring is deleted.Show less