Vulnerabilidades en SiberianCMS
5 resultadosCVE-2023-39377HIGH SiberianCMS - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified methodEPSS 0.8%CVE-2023-39378HIGH SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') by an unauthenticated userEPSS 0.7%CVE-2023-39375HIGHSiberianCMS - CWE-274: Improper Handling of Insufficient PrivilegesEPSS 0.6%CVE-2024-41702CRITICALSiberianCMS – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')EPSS 0.5%CVE-2023-39376MEDIUMSiberianCMS - CWE-284: Improper Access Control Authorized user may disable a security feature over the networkEPSS 0.4%