Vulnerabilities (CVE)

Filtered by vendor Ayacms Project Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-45550 1 Ayacms Project 1 Ayacms 2024-02-04 N/A 9.8 CRITICAL
AyaCMS 3.1.2 is vulnerable to Remote Code Execution (RCE).
CVE-2021-44238 1 Ayacms Project 1 Ayacms 2024-02-04 6.5 MEDIUM 7.2 HIGH
AyaCMS 3.1.2 is vulnerable to Remote Code Execution (RCE) via /aya/module/admin/ust_tab_e.inc.php,
CVE-2020-23686 1 Ayacms Project 1 Ayacms 2024-02-04 6.8 MEDIUM 8.8 HIGH
Cross site request forgery (CSRF) vulnerability in AyaCMS 3.1.2 allows attackers to change an administrators password or other unspecified impacts.