Chaoji Cms Project Chaoji Cms — known CVE vulnerabilities
Every CVE whose affected-product data names Chaoji Cms Project Chaoji Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2020-19962 — CVSS 5.4 (medium): A stored cross-site scripting (XSS) vulnerability in the getClientIp function in /lib/tinwin.class.php of Chaoji CMS 2.39, allows attackers…
CVE-2020-18410 — CVSS 4.8 (medium): A stored cross site scripting (XSS) vulnerability in /index.php?admin-master-article-edit of Chaoji CMS v2.18 that allows attackers to…
CVE-2020-18413 — CVSS 4.8 (medium): Stored cross site scripting (XSS) vulnerability in /index.php?admin-master-navmenu-add of Chaoji CMS v2.18 that allows attackers to execute…
CVE-2020-18414 — CVSS 4.8 (medium): Stored cross site scripting (XSS) vulnerability in Chaoji CMS v2.18 that allows attackers to execute arbitrary code via…