Vulnerabilities (CVE)

Filtered by vendor Bumsys Project Subscribe
Total 8 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-2551 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 8.8 HIGH
PHP Remote File Inclusion in GitHub repository unilogies/bumsys prior to 2.1.1.
CVE-2023-2832 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 7.2 HIGH
SQL Injection in GitHub repository unilogies/bumsys prior to 2.2.0.
CVE-2023-2554 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 7.2 HIGH
External Control of File Name or Path in GitHub repository unilogies/bumsys prior to 2.2.0.
CVE-2023-2552 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 8.8 HIGH
Cross-Site Request Forgery (CSRF) in GitHub repository unilogies/bumsys prior to 2.1.1.
CVE-2023-2553 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 5.4 MEDIUM
Cross-site Scripting (XSS) - Stored in GitHub repository unilogies/bumsys prior to 2.2.0.
CVE-2023-1361 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 6.5 MEDIUM
SQL Injection in GitHub repository unilogies/bumsys prior to v2.0.2.
CVE-2023-1362 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 6.1 MEDIUM
Improper Restriction of Rendered UI Layers or Frames in GitHub repository unilogies/bumsys prior to v2.0.2.
CVE-2023-0455 1 Bumsys Project 1 Bumsys 2024-02-04 N/A 8.8 HIGH
Unrestricted Upload of File with Dangerous Type in GitHub repository unilogies/bumsys prior to v1.0.3-beta.