← Back

S Cms

s-cms

42 CVEs • 2 products

Products (2)

Click to collapse
Toggle
S Cms
s-cms
41 CVEs
Cms Enterprise Website Construction System
cms_enterprise_website_construction_system
1 CVE

CVEs (42)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-18427
1S Cms
1S Cms
Nov 21, 2024
Oct 17, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
s-cms 3.0 allows SQL Injection via the member/post.php 0_id parameter or the POST data to member/member_login.php.
CVE-2018-18426
1S Cms
1S Cms
Nov 21, 2024
Oct 17, 2018
N/A· v4
8.8 HIGH· v3
9.0 HIGH· v2
s-cms 3.0 allows remote attackers to execute arbitrary PHP code by placing this code in a crafted User-agent Disallow value in the robots.php txt parameter.