aikcms CVE Vulnerabilities & CVE List (5)

Products (CPE): — CVEs: 5

aikcms vulnerability overview

Aggregates CVE and security vulnerability intelligence across all aikcms-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Common weakness patterns include vendor risk csrf and vendor risk sql injection, with potential vendor impact data exposure across vendor surface production workloads and vendor surface software deployment use cases.

Vulnerability distribution trend (last 24 months)

Showing 15 of 5 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2020-18464 Cross Site Request Forgery (CSRF) vulnerability in AikCms 2.0.0 in video_list.php, which can let a malicious user delete movie information. [email protected] 3.5 0.05% 2021-08-12 2024-11-21
CVE-2020-18463 Cross Site Request Forgery (CSRF) vulnerability exists in v2.0.0 in video_list.php, which can let a malicious user delete a video message. [email protected] 2.4 0.05% 2021-08-12 2024-11-21
CVE-2020-18462 File Upload vulnerabilty in AikCms v2.0.0 in poster_edit.php because the background file management office does not verify the uploaded file. [email protected] 7.2 0.38% 2021-08-12 2024-11-21
CVE-2019-11568 An issue was discovered in AikCms v2.0. There is a File upload vulnerability, as demonstrated by an admin/page/system/nav.php request with PHP code in a .php file with the application/octet-stream content type. [email protected] 8.8 0.40% 2019-04-27 2024-11-21
CVE-2019-11567 An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'], as demonstrated by an admin/page/system/nav.php?del= URI. [email protected] 7.2 0.27% 2019-04-27 2024-11-21
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence