Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Flatcore\-Cms
(Flatcore)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 13 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-11-09 | CVE-2022-43118 | A cross-site scripting (XSS) vulnerability in flatCore-CMS v2.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Username text field. | Flatcore\-Cms | 6.1 | ||
| 2021-08-23 | CVE-2021-39608 | Remote Code Execution (RCE) vulnerabilty exists in FlatCore-CMS 2.0.7 via the upload addon plugin, which could let a remote malicious user exeuct arbitrary php code. | Flatcore\-Cms | 7.2 | ||
| 2021-08-23 | CVE-2021-39609 | Cross Site Scripting (XSS) vulnerability exiss in FlatCore-CMS 2.0.7 via the upload image function. | Flatcore\-Cms | 5.4 |