Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Wtcms
(Wtcms_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 12 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-09-01 | CVE-2020-20343 | WTCMS 1.0 contains a cross-site request forgery (CSRF) vulnerability in the index.php?g=admin&m=nav&a=add_post component that allows attackers to arbitrarily add articles in the administrator background. | Wtcms | 6.5 | ||
| 2021-09-01 | CVE-2020-20344 | WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerability in the keyword search function under the background articles module. | Wtcms | 5.4 |