Количество 2
Количество 2
CVE-2025-61183
4 месяца назад
Cross Site Scripting in vaahcms v.2.3.1 allows a remote attacker to execute arbitrary code via upload method in the storeAvatar() method of UserBase.php
CVSS3: 6.1
EPSS: Низкий
GHSA-q769-phqg-263r
4 месяца назад
VaahCMS is vulnerable to XSS through its Avatar Upload endpoint
CVSS3: 6.1
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-61183 Cross Site Scripting in vaahcms v.2.3.1 allows a remote attacker to execute arbitrary code via upload method in the storeAvatar() method of UserBase.php | CVSS3: 6.1 | 0% Низкий | 4 месяца назад |
| GHSA-q769-phqg-263r VaahCMS is vulnerable to XSS through its Avatar Upload endpoint | CVSS3: 6.1 | 0% Низкий | 4 месяца назад |
Уязвимостей на страницу
20