juzaweb/cms Security Advisories for v3.0.7 (3)
-
[MEDIUM] juzaweb CMS allows cross-site scripting by uploading an SVG file
PKSA-wym3-mj3y-byq2 CVE-2025-5420 GHSA-49rr-34j5-r8mw
Affected version: <=3.4.2
Reported by:
GitHub -
[MEDIUM] juzawebCMS Incorrect Access Control vulnerability
PKSA-2cgx-y9dm-ckkj CVE-2023-46906 GHSA-93p6-9cxv-5rpq
Affected version: <=3.4
Reported by:
GitHub -
[HIGH] juzawebCMS Injection vulnerability
PKSA-6139-g68w-c4v4 CVE-2023-46468 GHSA-h92m-4g9m-72vr
Affected version: <=3.4
Reported by:
GitHub