Apprain Apprain Cmf
33 CVEs affecting Apprain Apprain Cmf. Latest disclosed: 2025-12-10. Critical: 3, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-41034 | Critical | 9.8 | 2025-09-04 | An SQL injection vulnerability has been found in appRain CMF 4.0.5. This vulnerability allows an attacker to retrieve, create, update, and delete the database… |
CVE-2025-41033 | Critical | 9.8 | 2025-09-04 | An SQL injection vulnerability has been found in appRain CMF 4.0.5. This vulnerability allows an attacker to retrieve, create, update, and delete the database… |
CVE-2025-41032 | Critical | 9.8 | 2025-09-04 | An SQL injection vulnerability has been found in appRain CMF 4.0.5. This vulnerability allows an attacker to retrieve, create, update, and delete the database… |
CVE-2024-58279 | High | 8.8 | 2025-12-10 | appRain CMF 4.0.5 contains an authenticated remote code execution vulnerability that allows administrative users to upload malicious PHP files through the file… |
CVE-2025-41035 | Medium | 6.5 | 2025-09-04 | A problem has been discovered in appRain CMF 4.0.5. An authenticated Path Traversal vulnerability in /apprain/common/download/ allows remote users to bypass th… |
CVE-2025-41063 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in version 4.0.5 of appRain CMF, consisting of an authenticated reflected XSS due to a lack of proper validation of user in… |
CVE-2025-41062 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in version 4.0.5 of appRain CMF, consisting of an authenticated reflected XSS due to a lack of proper validation of user in… |
CVE-2025-41061 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41060 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41059 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41058 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41057 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41056 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41055 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41054 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41053 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41052 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41051 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41050 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |
CVE-2025-41049 | Medium | 5.4 | 2025-09-04 | A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, th… |