|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2018-20772 | High | Feb 11, 2019 | Frog CMS 0.9.5 allows PHP code execution via <?php to the admin/?/layout/edit/1 URI. |
0.9.5
|
|
| CVE-2018-20680 | Medium | Jan 09, 2019 | Frog CMS 0.9.5 has XSS in the admin/?/page/edit/1 body field. |
0.9.5
|
|
| CVE-2018-20448 | Medium | Dec 25, 2018 | Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI. |
0.9.5
|
|
| CVE-2018-16374 | Medium | Sep 03, 2018 | Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings. |
0.9.5
|
|
| CVE-2018-16373 | Medium | Sep 03, 2018 | Frog CMS 0.9.5 has an Upload vulnerability that can create files via /admin/?/plugin/file_manager/save. |
0.9.5
|
|
| CVE-2018-11098 | BDSA-2018-1814 | High | May 15, 2018 | An issue was discovered in Frog CMS 0.9.5. There is a file upload vulnerability via the admin/?/plugin/file_manager/upload URI, a similar issue to CVE- more... |
0.9.5
|
| CVE-2014-4912 | Critical | Mar 22, 2018 | An Arbitrary File Upload issue was discovered in Frog CMS 0.9.5 due to lack of extension validation. |
0.9.5
|
|
| BDSA-2015-0403 | High | Jan 23, 2018 | FrogCMS is a content management system which is coded in PHP. It contains an open redirect vulnerability within the admin login page where an attacker more... |