Sunlight-cms Sunlight Cms — known CVE vulnerabilities
Every CVE whose affected-product data names Sunlight-cms Sunlight Cms, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2007-2774 — CVSS 7.5 (high): Multiple PHP remote file inclusion vulnerabilities in SunLight CMS 5.3 allow remote attackers to execute arbitrary PHP code via a URL in…
CVE-2023-48201 — CVSS 5.4 (medium): Cross Site Scripting (XSS) vulnerability in Sunlight CMS v.8.0.1, allows remote authenticated attackers to execute arbitrary code and…
CVE-2023-48202 — CVSS 5.4 (medium): Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1 allows an authenticated low-privileged user to escalate privileges via a…