This page lists publicly disclosed CVE vulnerabilities affecting doyocms_project doyocms (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-19803 | Cross Site Request Forgery vulnerability found in Milken DoyoCMS v.2.3 allows a remote attacker to execute arbitrary code via the background system settings. | [email protected] | 8.8 | 0.44% | 2023-04-11 | 2026-06-16 |
| CVE-2020-19802 | File Upload vulnerability found in Milken DoyoCMS v.2.3 allows a remote attacker to execute arbitrary code via the upload file type parameter. | [email protected] | 9.8 | 1.12% | 2023-04-11 | 2026-06-16 |
| CVE-2021-26740 | Arbitrary file upload vulnerability sysupload.php in millken doyocms 2.3 allows attackers to execute arbitrary code. | [email protected] | 9.8 | 1.55% | 2021-11-01 | 2026-06-16 |
| CVE-2021-26739 | SQL Injection vulnerability in pay.php in millken doyocms 2.3, allows attackers to execute arbitrary code, via the attribute parameter. | [email protected] | 9.8 | 1.63% | 2021-11-01 | 2026-06-16 |