8cmsCVEs & Vulnerabilities
4 CVEs affecting 8cms products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
4 CVEs→ All vendors
Most Affected Products
ljcms 4
CVE-2020-20735CRITICAL
File Upload vulnerability in LJCMS v.4.3.R60321 allows a remote attacker to execute arbitrary code via the ljcms/index.php parameter.
20 Jun 2023
9.8
CVSS
CVE-2020-21237CRITICAL
An issue in the user login box of LJCMS v1.11 allows attackers to hijack user accounts via brute force attacks.
28 Dec 2021
9.8
CVSS
CVE-2020-20979CRITICAL
An arbitrary file upload vulnerability in the move_uploaded_file() function of LJCMS v4.3 allows attackers to execute arbitrary code.
12 Aug 2021
9.8
CVSS
CVE-2020-20583HIGH
A SQL injection vulnerability in /question.php of LJCMS Version v4.3.R60321 allows attackers to obtain sensitive database information.
8 Jul 2021
7.5
CVSS
← PrevPage 1 / 1Next →