Opensourcecms 60cyclecms — known CVE vulnerabilities
Every CVE whose affected-product data names Opensourcecms 60cyclecms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2020-37110 — CVSS 8.2 (high): 60CycleCMS 2.5.2 contains an SQL injection vulnerability in news.php and common/lib.php that allows attackers to manipulate database…
CVE-2020-37111 — CVSS 6.1 (medium): 60CycleCMS 2.5.2 contains a cross-site scripting (XSS) vulnerability in news.php that allows attackers to inject malicious scripts through…