Cmseasy Security Vulnerabilities (CVEs)

Track 8 security vulnerabilities affecting Cmseasy products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

1 Critical

4 High

3 Medium

Sort by:

🔔 Get Alerts for Cmseasy

CVE-2025-15148 4.7

CVE-2025-15148 is a code injection vulnerability in CmsEasy's backend template management that allows attackers to execute arbitrary code by manipulat...

Dec 28, 2025

CVE-2025-1336 4.3

This path traversal vulnerability in CmsEasy 7.7.7.9 allows attackers to delete arbitrary files on the server by manipulating the imgname parameter in...

Feb 16, 2025

CVE-2025-0973 5.4

This critical vulnerability in CmsEasy 7.7.7.9 allows remote attackers to perform path traversal attacks via the select[] parameter in the backAll_act...

Feb 3, 2025

CVE-2024-34315 7.5

CmsEasy v7.7.7.9 contains a local file inclusion vulnerability in the fckedit_action method of /admin/template_admin.php that allows attackers to read...

May 7, 2024

CVE-2024-31551 7.5

This CVE describes a directory traversal vulnerability in cmseasy v7.7.7.9 that allows attackers to delete arbitrary files on the server via crafted G...

Apr 26, 2024

CVE-2020-18406 7.5

CVE-2020-18406 is a vulnerability in cmseasy v7.0.0 that transmits user credentials in plain text without encryption. This allows attackers to interce...

Jun 27, 2023

CVE-2023-34880 9.8

CVE-2023-34880 is a critical path traversal vulnerability in cmseasy CMS that allows attackers to execute arbitrary code via local file inclusion. Thi...

Jun 15, 2023

CVE-2021-42643 8.8

CVE-2021-42643 is an arbitrary file write vulnerability in cmseasy CMS that allows attackers to write PHP script files to the web server. This can lea...

May 17, 2022

Why Monitor Cmseasy Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 8+ known vulnerabilities affecting Cmseasy products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Cmseasy packages in under 60 seconds. No agents required - completely agentless scanning that works across Cmseasy deployments.

Free vulnerability database: Access detailed information about every Cmseasy CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Cmseasy CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Cmseasy CVEs Free