Product
webedition cms
8 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2023-53884
CVE-2023-53883
CVE-2024-28418
CVE-2024-28417
CVE-2014-2302
CVE-2014-5258
CVE-2014-2303
CVE-2008-4154
all versions
Webedition CMS v2.9.8.8 contains a stored cross-site scripting vulnerability that allows authenticated users to upload malicious S
all versions
Webedition CMS v2.9.8.8 contains a remote code execution vulnerability that allows authenticated attackers to inject system comman
all versions
Webedition CMS 9.2.2.0 has a File upload vulnerability via /webEdition/we_cmd.php
all versions
Webedition CMS 9.2.2.0 has a Stored XSS vulnerability via /webEdition/we_cmd.php.
< 6.2.7.0
The installer script in webEdition CMS before 6.2.7-s1 and 6.3.x before 6.3.8-s1 allows remote attackers to conduct PHP Object Inj
<= 6.3.8.0
Directory traversal vulnerability in showTempFile.php in webEdition CMS before 6.3.9.0 Beta allows remote authenticated users to r
all versions
Multiple SQL injection vulnerabilities in the file browser component (we_fs.php) in webEdition CMS before 6.2.7-s1.2 and 6.3.x thr
all versions
SQL injection vulnerability in living-e webEdition CMS allows remote attackers to execute arbitrary SQL commands via the we_object