Skip to main content

Chemcms

2 CVEs product

Monthly

CVE-2018-16346 MEDIUM POC This Month

ChemCMS 1.0.6 has XSS via the "setting -> website information" field. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Chemcms
NVD GitHub
CVSS 3.0
4.8
EPSS
0.6%
CVE-2018-10295 HIGH POC This Week

ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an administrator account. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Chemcms
NVD GitHub
CVSS 3.0
8.8
EPSS
0.5%
EPSS 1% CVSS 4.8
MEDIUM POC This Month

ChemCMS 1.0.6 has XSS via the "setting -> website information" field. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Chemcms
NVD GitHub
EPSS 1% CVSS 8.8
HIGH POC This Week

ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an administrator account. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Chemcms
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy