Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2013-7473 | 1 Windu | 1 Windu Cms | 2019-08-06 | 6.8 MEDIUM | 8.8 HIGH |
Windu CMS 2.2 allows CSRF via admin/users/?mn=admin.message.error to add an admin account. | |||||
CVE-2013-7474 | 1 Windu | 1 Windu Cms | 2019-08-06 | 4.3 MEDIUM | 6.1 MEDIUM |
Windu CMS 2.2 allows XSS via the name parameter to admin/content/edit or admin/content/add, or the username parameter to admin/users. |