NotCVE - vendor:"Pbootcms" product:"Pbootcms" version:"2.0.6"

2 results (0.001 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

CVE-2023-39834

https://notcve.org/view.php?id=CVE-2023-39834

PbootCMS below v3.2.0 was discovered to contain a command injection vulnerability via create_function. • https://github.com/Pbootcms/Pbootcms/issues/8 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2020-22535

https://notcve.org/view.php?id=CVE-2020-22535

Incorrect Access Control vulnerability in PbootCMS 2.0.6 via the list parameter in the update function in upgradecontroller.php. Una vulnerabilidad de Control de Acceso Incorrecto en PbootCMS 2.0.6, por medio del parámetro list en la función update en el archivo upgradecontroller.php • https://github.com/Pbootcms/Pbootcms/issues/5 • CWE-668: Exposure of Resource to Wrong Sphere •