CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Auracms: >> Auracms >> 2.3 Security Vulnerabilities

CVE-2018-16338

An issue was discovered in AuraCMS 2.3. There is a CSRF vulnerability that can change the administrator's password via admin.php?mod=users and subsequently add a page or menu, or submit a topic.

CVSS Score

8.8

EPSS Score

0.001

Published

2018-09-02

CVE-2018-15199

AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action.

CVSS Score

5.4

EPSS Score

0.003

Published

2018-08-08

Page 1

Vulnerabilities

Vulnerable Software

Auracms: >> Auracms >> 2.3 Security Vulnerabilities

Products

Pricing

Contact Us