Advanced Comment System Project Advanced Comment System — known CVE vulnerabilities
Every CVE whose affected-product data names Advanced Comment System Project Advanced Comment System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2018-18619 — CVSS 9.8 (critical): internal/advanced_comment_system/admin.php in Advanced Comment System 1.0 is prone to an SQL injection vulnerability because it fails to…
CVE-2020-35598 — CVSS 7.5 (high): ACS Advanced Comment System 1.0 is affected by Directory Traversal via an advanced_component_system/index.php?ACS_path=..%2f URI. NOTE…
CVE-2018-18845 — CVSS 6.1 (medium): internal/advanced_comment_system/index.php and internal/advanced_comment_system/admin.php in Advanced Comment System, version 1.0, contain…