Hkcms: >> Hkcms >> 2.3.0.230709 Security Vulnerabilities
HkCms <= v2.3.2.240702 is vulnerable to file upload in the getFileName method in /app/common/library/Upload.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-11-20
HKcms v2.3.0.230709 is vulnerable to Cross Site Scripting (XSS) allowing administrator cookies to be stolen.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-09-11