Filtered by vendor Wdoyo
Subscribe
Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-19821 | 1 Wdoyo | 1 Doyocms | 2021-08-31 | 6.5 MEDIUM | 8.8 HIGH |
A SQL injection vulnerability in admin.php of DOYOCMS 2.3 allows attackers to execute arbitrary SQL commands via the orders[] parameter. | |||||
CVE-2019-9551 | 1 Wdoyo | 1 Doyocms | 2019-03-04 | 3.5 LOW | 4.8 MEDIUM |
An issue was discovered in DOYO (aka doyocms) 2.3 through 2015-05-06. It has admin.php XSS. | |||||
CVE-2019-7569 | 1 Wdoyo | 1 Doyo | 2019-02-07 | 6.8 MEDIUM | 8.8 HIGH |
An issue was discovered in DOYO (aka doyocms) 2.3(20140425 update). There is a CSRF vulnerability that can add a super administrator account via admin.php?c=a_adminuser&a=add&run=1. |