Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Aikcms Subscribe
Filtered by product Aikcms
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-18462 1 Aikcms 1 Aikcms 2021-08-17 6.5 MEDIUM 7.2 HIGH
File Upload vulnerabilty in AikCms v2.0.0 in poster_edit.php because the background file management office does not verify the uploaded file.
CVE-2020-18463 1 Aikcms 1 Aikcms 2021-08-17 3.5 LOW 2.4 LOW
Cross Site Request Forgery (CSRF) vulnerability exists in v2.0.0 in video_list.php, which can let a malicious user delete a video message.
CVE-2020-18464 1 Aikcms 1 Aikcms 2021-08-17 3.5 LOW 3.5 LOW
Cross Site Request Forgery (CSRF) vulnerability in AikCms 2.0.0 in video_list.php, which can let a malicious user delete movie information.
CVE-2019-11567 1 Aikcms 1 Aikcms 2019-04-29 6.5 MEDIUM 7.2 HIGH
An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'], as demonstrated by an admin/page/system/nav.php?del= URI.
CVE-2019-11568 1 Aikcms 1 Aikcms 2019-04-29 6.8 MEDIUM 8.8 HIGH
An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type.