Superjock1988

#19331of 53,635
13.7Total CVSS
Vulnerabilities · 2
Medium
1
High
1
PT-2024-12221
6.5
2024-01-04
S Cms · S-Cms · CVE-2023-29962
**Name of the Vulnerable Software and Affected Versions** S-CMS version 5.0 **Description** The issue is related to an arbitrary file read vulnerability. **Recommendations** For S-CMS version 5.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2023-22497
7.2
2023-05-05
S Cms · S-Cms · CVE-2023-29963
**Name of the Vulnerable Software and Affected Versions** S-CMS version 5.0 **Description** The issue is related to an authenticated remote code execution (RCE) vulnerability. It can be exploited via the `/admin/ajax.php` API endpoint. **Recommendations** For S-CMS version 5.0, consider disabling access to the `/admin/ajax.php` endpoint until a patch is available. Restricting access to this component can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.