Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Semcms
(Sem\-Cms)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 35 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-08-05 | CVE-2020-23564 | File Upload vulnerability in SEMCMS 3.9 allows remote attackers to run arbitrary code via SEMCMS_Upfile.php. | Semcms | 7.2 | ||
| 2023-12-14 | CVE-2023-50563 | Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMS_Function.php. | Semcms | 9.8 | ||
| 2019-04-25 | CVE-2019-11518 | An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete. | Semcms | 7.2 | ||
| 2018-12-10 | CVE-2018-20017 | SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI. | Semcms | 4.8 | ||
| 2018-10-30 | CVE-2018-18841 | XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexkey parameter. | Semcms | 4.8 | ||
| 2018-10-30 | CVE-2018-18840 | XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexmetatit parameter. | Semcms | 5.4 | ||
| 2018-10-29 | CVE-2018-18783 | XSS was discovered in SEMCMS V3.4 via the semcms_remail.php?type=ok umail parameter. | Semcms | 6.1 | ||
| 2018-10-29 | CVE-2018-18745 | An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Menu.php?lgid=1 during editing. | Semcms | 4.8 | ||
| 2018-10-29 | CVE-2018-18744 | An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the admin/SEMCMS_Main.php URI. | Semcms | 4.8 | ||
| 2018-10-29 | CVE-2018-18743 | An XSS issue was discovered in SEMCMS 3.4 via the second text field to the admin/SEMCMS_Categories.php?pid=1&lgid=1 URI. | Semcms | 4.8 |