Databay Maxcms — known CVE vulnerabilities
Every CVE whose affected-product data names Databay Maxcms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
- CVE-2009-3424 — CVSS 6.8 (medium): Multiple PHP remote file inclusion vulnerabilities in MaxCMS 3.11.20b, when register_globals is enabled, allow remote attackers to execute…
- CVE-2009-3426 — CVSS 6.8 (medium): PHP remote file inclusion vulnerability in includes/file_manager/special.php in MaxCMS 3.11.20b allows remote attackers to execute…
- CVE-2009-3425 — CVSS 5.0 (medium): Directory traversal vulnerability in includes/inc.thcms_admin_dirtree.php in MaxCMS 3.11.20b allows remote attackers to read arbitrary…