Product
siberiancms
7 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-1105
CVE-2024-41702
CVE-2023-39378
CVE-2023-39377
CVE-2023-39376
CVE-2023-39375
CVE-2017-6906
all versions
A vulnerability was found in SiberianCMS 4.20.6. It has been rated as problematic. Affected by this issue is some unknown function
< 5.0.11
SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
>= 4.0.0 and < 4.20.44
SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') by an unauthenticated u
>= 4.0.0 and < 4.20.44
SiberianCMS - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be ab
>= 4.0.0 and < 4.20.44
SiberianCMS - CWE-284 Improper Access Control Authorized user may disable a security feature over the network
>= 4.0.0 and < 4.20.44
SiberianCMS - CWE-274: Improper Handling of Insufficient Privileges
<= 4.9.2
An issue was discovered in SiberianCMS before 4.10.0. The vulnerability exists due to insufficient filtration of user-supplied da