Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Chshcms Subscribe
Total 42 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-30898 1 Chshcms 1 Cscms 2022-06-17 4.3 MEDIUM 6.5 MEDIUM
A Cross-site request forgery (CSRF) vulnerability in Cscms music portal system v4.2 allows remote attackers to change the administrator's username and password.
CVE-2022-29689 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/singer/admin/singer/del.
CVE-2022-29688 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/singer/admin/singer/hy.
CVE-2022-29685 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 8.8 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/User/level_sort.
CVE-2022-29686 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/singer/admin/lists/zhuan.
CVE-2022-29687 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/user/level_del.
CVE-2022-29683 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Label/page_del.
CVE-2022-29684 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Label/js_del.
CVE-2022-29670 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/del.
CVE-2022-29681 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/Links/del.
CVE-2022-29680 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/user/zu_del.
CVE-2022-29682 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a blind SQL injection vulnerability via the id parameter at /admin.php/vod/admin/topic/del.
CVE-2022-29676 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.
CVE-2022-29669 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 8.8 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/lists/zhuan.
CVE-2022-29667 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 8.8 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos.
CVE-2022-29665 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/topic/save.
CVE-2022-29664 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 8.8 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/pl_save.
CVE-2022-29666 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/lists/zhuan.
CVE-2022-29663 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/pic/admin/type/hy.
CVE-2022-29662 1 Chshcms 1 Cscms Music Portal System 2022-05-27 6.5 MEDIUM 7.2 HIGH
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/news/save.