CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wbce: >> Wbce Cms >> 1.6.0 Security Vulnerabilities

CVE-2023-39796

SQL injection vulnerability in the miniform module in WBCE CMS v.1.6.0 allows remote unauthenticated attacker to execute arbitrary code via the DB_RECORD_TABLE parameter.

CVSS Score

9.8

EPSS Score

0.819

Published

2023-11-10

CVE-2023-46054

Cross Site Scripting (XSS) vulnerability in WBCE CMS v.1.6.1 and before allows a remote attacker to escalate privileges via a crafted script to the website_footer parameter in the admin/settings/save.php component.

CVSS Score

5.4

EPSS Score

0.001

Published

2023-10-21

Page 1

Vulnerabilities

Vulnerable Software

Wbce: >> Wbce Cms >> 1.6.0 Security Vulnerabilities

Products

Pricing

Contact Us