CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39834
https://notcve.org/view.php?id=CVE-2023-39834
PbootCMS below v3.2.0 was discovered to contain a command injection vulnerability via create_function. • https://github.com/Pbootcms/Pbootcms/issues/8 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-20971
https://notcve.org/view.php?id=CVE-2020-20971
Cross Site Request Forgery (CSRF) vulnerability in PbootCMS v2.0.3 via /admin.php?p=/User/index. Una vulnerabilidad de tipo Cross Site Request Forgery (CSRF) en PbootCMS versión v2.0.3, por medio de /admin.php?p=/User/index • https://github.com/TplusSs/PbootCMS/issues/1 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-20363
https://notcve.org/view.php?id=CVE-2020-20363
Crossi Site Scripting (XSS) vulnerability in PbootCMS 2.0.3 in admin.php. Una vulnerabilidad de tipo Cross Site Scripting (XSS) en PbootCMS versión 2.0.3 en el archivo admin.php • http://pbootcms.com https://github.com/hnaoyun/PbootCMS https://github.com/wind226/CVE/issues/1 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21003
https://notcve.org/view.php?id=CVE-2020-21003
Pbootcms v2.0.3 is vulnerable to Cross Site Scripting (XSS) via admin.php. Pbootcms versión v2.0.3, es vulnerable a ataques de tipo Cross Site Scripting (XSS) por medio del archivo admin.php • https://github.com/Computer2200/-/issues/3 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •