Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2023
CVE-2020-20502
Cross Site Request Forgery found in yzCMS v.2.0 allows a remote attacker to execute arbitrary code via the token check function.
CVSS Score
6.5
EPSS Score
0.004
Published
2023-06-20
CVE-2020-20636
SQL injection vulnerability found in Joyplus-cms v.1.6.0 allows a remote attacker to access sensitive information via the id parameter of the goodbad() function.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-06-20
CVE-2020-20697
Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arbitrary code and gain access to senstivie information via a crafted script to the address parameter.
CVSS Score
4.8
EPSS Score
0.001
Published
2023-06-20
CVE-2020-20703
Buffer Overflow vulnerability in VIM v.8.1.2135 allows a remote attacker to execute arbitrary code via the operand parameter.
CVSS Score
9.8
EPSS Score
0.028
Published
2023-06-20
CVE-2020-20718
File Upload vulnerability in PluckCMS v.4.7.10 dev versions allows a remote attacker to execute arbitrary code via a crafted image file to the the save_file() parameter.
CVSS Score
9.8
EPSS Score
0.006
Published
2023-06-20
CVE-2020-20725
Cross Site Scripting vulnerability in taogogo taoCMS v.2.5 beta5.1 allows remote attacker to execute arbitrary code via the name field in admin.php.
CVSS Score
6.1
EPSS Score
0.002
Published
2023-06-20
CVE-2020-20726
Cross Site Request Forgery vulnerability in Gila GilaCMS v.1.11.4 allows a remote attacker to execute arbitrary code via the cm/update_rows/user parameter.
CVSS Score
8.8
EPSS Score
0.006
Published
2023-06-20
CVE-2020-20735
File Upload vulnerability in LJCMS v.4.3.R60321 allows a remote attacker to execute arbitrary code via the ljcms/index.php parameter.
CVSS Score
9.8
EPSS Score
0.013
Published
2023-06-20
CVE-2020-20918
An issue discovered in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary php code via the hidden parameter to admin.php when editing a page.
CVSS Score
7.2
EPSS Score
0.002
Published
2023-06-20
CVE-2020-20919
File upload vulnerability in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary code and access sensitive information via the theme.php file.
CVSS Score
7.2
EPSS Score
0.008
Published
2023-06-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved