Vulnerabilities
Vulnerable Software
Luocms Project:  >> Luocms  >> 2.0  Security Vulnerabilities
Luocms v2.0 is affected by Cross Site Scripting (XSS) in /admin/news/sort_add.php and /inc/function.php.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-03-10
Luocms v2.0 is affected by an incorrect access control vulnerability. Through /admin/templates/template_manage.php, an attacker can write an arbitrary shell file.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection in /admin/link/link_ok.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_ok.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection in /admin/news/news_ok.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection in /admin/news/news_mod.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection in /admin/news/sort_mod.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection in /admin/link/link_mod.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection through /admin/login.php. An attacker can log in to the background through SQL injection statements.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-03-10
Luocms v2.0 is affected by SQL Injection in /admin/manager/admin_mod.php. An attacker can obtain sensitive information through SQL injection statements.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-03-10


Contact Us

Shodan ® - All rights reserved