Filtered by vendor Avscms Subscriptions
Filtered by product Avscms Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-51053 1 Avscms 1 Avscms 2024-11-20 9.8 Critical
An arbitrary file upload vulnerability in the component /main/fileupload.php of AVSCMS v8.2.0 allows attackers to execute arbitrary code via uploading a crafted file.
CVE-2024-51051 1 Avscms 1 Avscms 2024-11-20 9.8 Critical
AVSCMS v8.2.0 was discovered to contain weak default credentials for the Administrator account.