← Back

Xunruicms

xunruicms

Vendor: Xunruicms • 23 CVEs

CVEs (23)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-30037
1Xunruicms
1Xunruicms
Nov 21, 2024
Mar 23, 2023
N/A· v4
7.2 HIGH· v3
N/A· v2
XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion, allows attackers to execute arbitrary php code, via the add function in cron.php.
CVE-2022-36224
1Xunruicms
1Xunruicms
Nov 21, 2024
Aug 19, 2022
N/A· v4
8.8 HIGH· v3
N/A· v2
XunRuiCMS V4.5.6 is vulnerable to Cross Site Request Forgery (CSRF).
CVE-2019-17074
1Xunruicms
1Xunruicms
Nov 21, 2024
Oct 1, 2019
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
An issue was discovered in XunRuiCMS 4.3.1. There is a stored XSS in the module_category area.