Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-45966 | 1 Classcms Project | 1 Classcms | 2023-01-03 | N/A | 9.8 CRITICAL |
here is an arbitrary file upload vulnerability in the file management function module of Classcms3.5. | |||||
CVE-2022-25582 | 1 Classcms Project | 1 Classcms | 2022-03-29 | 3.5 LOW | 5.4 MEDIUM |
A stored cross-site scripting (XSS) vulnerability in the Column module of ClassCMS v2.5 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Articles field. |