Every CVE whose affected-product data names Gdidees Gdidees Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-27178 — CVSS 9.8 (critical): An arbitrary file upload vulnerability in the upload function of GDidees CMS 3.9.1 allows attackers to execute arbitrary code via a crafted…
CVE-2023-27179 — CVSS 7.5 (high): GDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at…
CVE-2023-27180 — CVSS 7.5 (high): GDidees CMS v3.9.1 was discovered to contain a source code disclosure vulnerability by the backup feature which is accessible via…
CVE-2023-44758 — CVSS 5.4 (medium): GDidees CMS 3.0 is affected by a Cross-Site Scripting (XSS) vulnerability that allows attackers to execute arbitrary code via a crafted…