Autocms Project Autocms — known CVE vulnerabilities
Every CVE whose affected-product data names Autocms Project Autocms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-44724 — CVSS 7.2 (high): AutoCMS v5.4 was discovered to contain a PHP code injection vulnerability via the txtsite_url parameter at /admin/site_add.php. This…
CVE-2024-44725 — CVSS 7.2 (high): AutoCMS v5.4 was discovered to contain a SQL injection vulnerability via the sidebar parameter at /admin/robot.php.
CVE-2024-8866 — CVSS 4.3 (medium): A vulnerability was found in AutoCMS 5.4. It has been classified as problematic. This affects an unknown part of the file /admin/robot.php…