📦 Jpress
by Jpress
🔍 What is Jpress?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
CVE-2024-50919 is a critical vulnerability in Jpress CMS that allows attackers to upload arbitrary files, including malicious JSP files, leading to remote code execution. This affects all Jpress insta...
CVE-2021-45807 is a critical remote code execution vulnerability in JPress v4.2.0 that allows attackers to execute arbitrary commands on affected systems via the doUploadAndInstall function in the Add...
This Server-Side Request Forgery (SSRF) vulnerability in JPress allows attackers to make the vulnerable server send requests to internal or external systems, potentially accessing sensitive informatio...
JPress versions through 5.1.1 on Windows have an arbitrary file upload vulnerability that allows attackers to upload malicious files (like .jsp::$DATA) to execute arbitrary code on the server. This af...
CVE-2024-32358 is a remote code execution vulnerability in JPress v5.1.0 that allows attackers to execute arbitrary code through crafted scripts in the custom plug-in module. This affects all users ru...
CVE-2021-46114 is a remote code execution vulnerability in JPress v4.2.0 that allows authenticated attackers with admin panel access to inject malicious code into email templates. This vulnerability a...
CVE-2021-46115 is a remote code execution vulnerability in JPress 4.2.0 that allows authenticated attackers with admin panel access to upload malicious templates containing executable code. This affec...
CVE-2021-46118 is a remote code execution vulnerability in JPress 4.2.0 that allows attackers to inject malicious code through email template editing in the admin panel. This affects JPress installati...
CVE-2021-46117 is a remote code execution vulnerability in JPress 4.2.0 that allows authenticated attackers to inject malicious code via email template editing in the admin panel. This affects all JPr...
CVE-2021-45806 is a code injection vulnerability in JPress v4.2.0 admin panel that allows authenticated attackers to modify templates and execute malicious code. This affects all JPress v4.2.0 install...