Skip to main content

Monocms

5 CVEs product

Monthly

CVE-2024-10928 MEDIUM POC This Month

A vulnerability was found in MonoCMS up to 20240528. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Monocms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.4%
CVE-2024-10927 MEDIUM POC This Month

A vulnerability was found in MonoCMS up to 20240528. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Monocms
NVD GitHub VulDB
CVSS 4.0
5.3
EPSS
0.4%
CVE-2020-25985 HIGH POC This Week

MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Monocms
NVD Exploit-DB
CVSS 3.1
8.1
EPSS
1.7%
CVE-2020-25987 HIGH POC This Week

MonoCMS Blog 1.0 stores hard-coded admin hashes in the log.xml file in the source files for MonoCMS Blog. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Monocms
NVD
CVSS 3.1
7.5
EPSS
1.6%
CVE-2020-25986 MEDIUM POC This Month

A Cross Site Request Forgery (CSRF) vulnerability in MonoCMS Blog 1.0 allows attackers to change the password of a user. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Monocms
NVD
CVSS 3.1
6.5
EPSS
0.6%
EPSS 0% CVSS 5.3
MEDIUM POC This Month

A vulnerability was found in MonoCMS up to 20240528. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Monocms
NVD GitHub VulDB
EPSS 0% CVSS 5.3
MEDIUM POC This Month

A vulnerability was found in MonoCMS up to 20240528. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP XSS Monocms
NVD GitHub VulDB
EPSS 2% CVSS 8.1
HIGH POC This Week

MonoCMS Blog 1.0 is affected by: Arbitrary File Deletion. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Monocms
NVD Exploit-DB
EPSS 2% CVSS 7.5
HIGH POC This Week

MonoCMS Blog 1.0 stores hard-coded admin hashes in the log.xml file in the source files for MonoCMS Blog. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Monocms
NVD
EPSS 1% CVSS 6.5
MEDIUM POC This Month

A Cross Site Request Forgery (CSRF) vulnerability in MonoCMS Blog 1.0 allows attackers to change the password of a user. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Monocms
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy