Every CVE whose affected-product data names Pulsecms Pulse Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2010-4330 — CVSS 6.8 (medium): Directory traversal vulnerability in includes/controller.php in Pulse CMS Basic before 1.2.9 allows remote attackers to include and execute…
CVE-2010-0992 — CVSS 6.8 (medium): Multiple cross-site request forgery (CSRF) vulnerabilities in Pulse CMS Basic 1.2.2 and 1.2.3, and possibly Pulse Pro before 1.3.2, allow…
CVE-2010-1334 — CVSS 6.0 (medium): Unrestricted file upload vulnerability in Pulse CMS Basic 1.2.4 allows remote authenticated users to execute arbitrary code by uploading a…
CVE-2010-0993 — CVSS 6.0 (medium): Unrestricted file upload vulnerability in Pulse CMS Basic 1.2.2 and 1.2.3, and possibly Pulse Pro before 1.3.2, allows remote authenticated…
CVE-2010-0988 — CVSS 6.0 (medium): Multiple unspecified vulnerabilities in Pulse CMS before 1.2.3 allow (1) remote attackers to write to arbitrary files and execute arbitrary…
CVE-2010-0989 — CVSS 5.5 (medium): Directory traversal vulnerability in delete.php in Pulse CMS before 1.2.3 allows remote authenticated users to delete arbitrary files via…
CVE-2011-5041 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Pulse Pro CMS 1.7.2 allow remote attackers to inject arbitrary web script or HTML…
CVE-2010-1080 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in view.php in Pulse CMS 1.2.2 allows remote attackers to inject arbitrary web script or HTML via…
CVE-2010-1298 — CVSS 4.0 (medium): Directory traversal vulnerability in view.php in Pulse CMS 1.2.2 allows remote attackers to read arbitrary files via directory traversal…