CVE-2018-17036 — CVSS 9.8 (critical): An issue was discovered in UCMS 1.4.6 and 1.6. It allows PHP code injection during installation via the systemdomain parameter to…
CVE-2020-25483 — CVSS 9.8 (critical): An arbitrary command execution vulnerability exists in the fopen() function of file writes of UCMS v1.4.8, where an attacker can gain…
CVE-2020-25537 — CVSS 9.8 (critical): File upload vulnerability exists in UCMS 1.5.0, and the attacker can take advantage of this vulnerability to obtain server management…
CVE-2018-20599 — CVSS 8.8 (high): UCMS 1.4.7 allows remote attackers to execute arbitrary PHP code by entering this code during an index.php sadmin_fileedit action.
CVE-2022-28440 — CVSS 8.8 (high): An arbitrary file upload vulnerability in UCMS v1.6 allows attackers to execute arbitrary code via a crafted PHP file.
CVE-2018-17037 — CVSS 8.8 (high): user/editpost.php in UCMS 1.4.6 mishandles levels, which allows escalation from the normal user level of 1 to the superuser level of 3.
CVE-2018-19437 — CVSS 8.8 (high): UCMS 1.4.7 allows remote authenticated users to change the administrator password because $_COOKIE['admin_'.cookiehash] is used for…
CVE-2023-1303 — CVSS 6.3 (medium): A vulnerability was found in UCMS 1.6 and classified as critical. This issue affects some unknown processing of the file…
CVE-2018-17320 — CVSS 6.1 (medium): An issue was discovered in UCMS 1.4.6. aaddpost.php has stored XSS via the sadmin/aindex.php minfo parameter in a sadmin_aaddpost action.
CVE-2018-16804 — CVSS 6.1 (medium): An issue was discovered in UCMS 1.4.6. There is XSS in the title bar, as demonstrated by a do=list request.
CVE-2022-38527 — CVSS 6.1 (medium): UCMS v1.6.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Import function under the Site Management page.
CVE-2020-20781 — CVSS 5.4 (medium): A stored cross-site scripting (XSS) vulnerability in /ucms/index.php?do=list_edit of UCMS 1.4.7 allows attackers to execute arbitrary web…
CVE-2020-24981 — CVSS 5.3 (medium): An Incorrect Access Control vulnerability exists in /ucms/chk.php in UCMS 1.4.8. This results in information leak via an error message…
CVE-2021-25809 — CVSS 5.3 (medium): UCMS 1.5.0 was discovered to contain a physical path leakage via an error message returned by the adminchannelscache() function in top.php.
CVE-2023-2294 — CVSS 3.5 (low): A vulnerability was found in UCMS 1.6.0. It has been classified as problematic. This affects an unknown part of the file saddpost.php of…
CVE-2023-5015 — CVSS 3.5 (low): A vulnerability was found in UCMS 1.4.7. It has been classified as problematic. Affected is an unknown function of the file…