All 9 CVE vulnerabilities found in OTCMS, with AI-generated Chinese analysis, references, and POCs.
Vendor: n/a
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-6772 | OTCMS ind_backstage.php sql injection CWE-89 | 4.7 | Medium | 2023-12-13 |
| CVE-2023-3241 | OTCMS path traversal CWE-22 | 3.5 | Low | 2023-06-14 |
| CVE-2023-3240 | OTCMS usersNews_deal.php path traversal CWE-24 | 3.5 | Low | 2023-06-14 |
| CVE-2023-3239 | OTCMS path traversal CWE-24 | 3.5 | Low | 2023-06-14 |
| CVE-2023-3238 | OTCMS server-side request forgery CWE-918 | 6.3 | Medium | 2023-06-14 |
| CVE-2023-3237 | OTCMS hard-coded password CWE-259 | 6.3 | Medium | 2023-06-14 |
| CVE-2023-1797 | OTCMS unrestricted upload CWE-434 | 6.3 | Medium | 2023-04-02 |
| CVE-2023-1635 | OTCMS apiRun.php AutoRun cross site scripting CWE-79 | 3.5 | Low | 2023-03-25 |
| CVE-2023-1634 | OTCMS URL Parameter info_deal.php UseCurl server-side request forgery CWE-918 | 6.3 | Medium | 2023-03-25 |
All 9 known CVE vulnerabilities affecting OTCMS with full Chinese analysis, references, and POCs where available.