General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2020-5515 | Gila CMS 1.11.8 allows /admin/sql?query= SQL Injection. | High (7.2) | 2020-01-06 | General Purpose |
| CVE-2020-5514 | Gila CMS 1.11.8 allows Unrestricted Upload of a File with a Dangerous Type via .phar or .phtml to the lzld/thumb?src= U… | Critical (9.1) | 2020-01-06 | General Purpose |
| CVE-2015-4039 | Multiple cross-site scripting (XSS) vulnerabilities in the WP Membership plugin 1.2.3 for WordPress allow remote authen… | Medium (5.4) | 2020-01-06 | General Purpose |
| CVE-2020-5840 | An issue was discovered in HashBrown CMS before 1.3.2. Server/Entity/Resource/Connection.js allows an attacker to reach… | High (7.5) | 2020-01-06 | General Purpose |
| CVE-2019-15603 | The seefl package v0.1.1 is vulnerable to a stored Cross-Site Scripting (XSS) vulnerability via a malicious filename re… | Medium (6.1) | 2020-01-06 | General Purpose |