CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Ukcms: >> Ukcms >> 1.1.10 Security Vulnerabilities

CVE-2020-18449

Cross Site Scripting (XSS) vulnerability exists in UKCMS v1.1.10 via data in the index function in Single.php

CVSS Score

5.4

EPSS Score

0.002

Published

2021-08-12

CVE-2020-20977

A stored cross site scripting (XSS) vulnerability in index.php/legend/6.html of UK CMS v1.1.10 allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the Comments section.

CVSS Score

5.4

EPSS Score

0.002

Published

2021-08-12

CVE-2019-10888

A CSRF Issue that can add an admin user was discovered in UKcms v1.1.10 via admin.php/admin/role/add.html.

CVSS Score

8.8

EPSS Score

0.001

Published

2019-04-05

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved