Max-3000: >> Maxsite Cms >> 108 Security Vulnerabilities
Maxsite CMS v180 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_file_description at /admin/files.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-02-28
A Remote Code Execution (RCE) vulnerability at /admin/options in Maxsite CMS v180 allows attackers to execute arbitrary code via a crafted PHP file.
CVSS Score
9.8
EPSS Score
0.107
Published
2022-02-28
Maxsite CMS v180 was discovered to contain multiple arbitrary file deletion vulnerabilities in /admin_page/all-files-update-ajax.php via the dir and deletefile parameters.
CVSS Score
8.1
EPSS Score
0.004
Published
2022-02-28
Maxsite CMS v108 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_tags at /admin/page_edit/3.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-02-28