Product:

Ayacms

(Ayacms_project)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 9
Date Id Summary Products Score Patch Annotated
2022-12-07 CVE-2022-45550 AyaCMS 3.1.2 is vulnerable to Remote Code Execution (RCE). Ayacms 9.8
2023-01-27 CVE-2022-48116 AyaCMS v3.1.2 was discovered to contain a remote code execution (RCE) vulnerability via the component /admin/tpl_edit.inc.php. Ayacms 7.2
2022-12-22 CVE-2022-46101 AyaCMS v3.1.2 was found to have a code flaw in the ust_sql.inc.php file, which allows attackers to cause command execution by inserting malicious code. Ayacms 8.8
2022-12-22 CVE-2022-46102 AyaCMS 3.1.2 is vulnerable to Arbitrary file upload via /aya/module/admin/fst_down.inc.php Ayacms 9.8
2022-12-22 CVE-2022-47926 AyaCMS 3.1.2 is vulnerable to file deletion via /aya/module/admin/fst_del.inc.php Ayacms 9.8
2022-12-06 CVE-2022-45548 AyaCMS v3.1.2 has an Arbitrary File Upload vulnerability. Ayacms 8.8
2022-11-10 CVE-2022-43074 AyaCMS v3.1.2 was discovered to contain an arbitrary file upload vulnerability via the component /admin/fst_upload.inc.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. Ayacms 9.8
2022-03-01 CVE-2021-44238 AyaCMS 3.1.2 is vulnerable to Remote Code Execution (RCE) via /aya/module/admin/ust_tab_e.inc.php, Ayacms 7.2
2021-11-02 CVE-2020-23686 Cross site request forgery (CSRF) vulnerability in AyaCMS 3.1.2 allows attackers to change an administrators password or other unspecified impacts. Ayacms 8.8