| Max CVSS | 6.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-1058 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in AdaptCMS 3.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) data[Category][title] parameter to admin/categories/add, (2) data[Field][title] parameter to admin/fields/
|
08-09-2017 - 01:29 | 16-01-2015 - 15:59 | |
| CVE-2015-1059 | 6.5 |
Unrestricted file upload vulnerability in admin/files/add in AdaptCMS 3.0.3 allows remote authenticated users to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in /app/webroot/u
|
08-09-2017 - 01:29 | 16-01-2015 - 15:59 | |
| CVE-2015-1060 | 5.8 |
Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer header. <a href="http://cwe.mitre.org/data
|
08-09-2017 - 01:29 | 16-01-2015 - 15:59 |