| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-1105 | SiberianCMS HTTP GET Request flat cross site scripting | - | SiberianCMS | Medium | 4.3 | 2025-02-07 18:00:16 | Deep Dive |
| CVE-2024-41702 | SiberianCMS – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') | SiberianCMS | SiberianCMS v5.0.8 | Critical | 9.8 | 2024-07-30 09:18:04 | Deep Dive |
| CVE-2023-39378 | SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') by an unauthenticated user | SiberianCMS | SiberianCMS | High | 8.8 | 2023-09-26 09:23:48 | Deep Dive |
| CVE-2023-39377 | SiberianCMS - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method | SiberianCMS | SiberianCMS | High | 7.2 | 2023-09-26 09:22:26 | Deep Dive |
| CVE-2023-39376 | SiberianCMS - CWE-284: Improper Access Control Authorized user may disable a security feature over the network | SiberianCMS | SiberianCMS | Medium | 6.5 | 2023-09-26 09:19:56 | Deep Dive |
| CVE-2023-39375 | SiberianCMS - CWE-274: Improper Handling of Insufficient Privileges | SiberianCMS | SiberianCMS | High | 7.5 | 2023-09-26 09:15:02 | Deep Dive |