All 2 CVE vulnerabilities found in CMS Commander – Manage Multiple Sites, with AI-generated Chinese analysis, references, and POCs.
Vendor: thoefter
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-3334 | CMS Commander <= 2.288 - Authenticated (Custom+) SQL Injection via 'or_blogname' Parameter CWE-89 | 8.8 | High | 2026-03-21 |
| CVE-2023-3325 | CMS Commander <= 2.287 - Authorization Bypass through Use of Insufficiently Unique Cryptographic Signature CWE-345 | 8.1 | High | 2023-06-20 |
All 2 known CVE vulnerabilities affecting CMS Commander – Manage Multiple Sites with full Chinese analysis, references, and POCs where available.