📦 Cmswing

by Cmswing

🔍 What is Cmswing?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2021-43735

CRITICAL CVSS 9.8 Mar 23, 2022

CVE-2021-43735 is a SQL injection vulnerability in CmsWing CMS that allows attackers to execute arbitrary SQL commands through the 'behavior rule' parameter. This affects all systems running CmsWing 1...

CVE-2020-20294

CRITICAL CVSS 9.8 Feb 1, 2021

CVE-2020-20294 is a critical SQL injection vulnerability in CMSWing 1.3.8 that allows remote attackers to execute arbitrary SQL commands via malicious log parameters. This affects all systems running ...

CVE-2020-20296

CRITICAL CVSS 9.8 Feb 1, 2021

CVE-2020-20296 is a critical SQL injection vulnerability in CMSWing project version 1.3.8 that allows attackers to execute arbitrary SQL commands through the rechargeAction function. This affects all ...