E107 E107 Cms
6 CVEs affecting E107 E107 Cms. Latest disclosed: 2026-05-10. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2021-47937 | High | 8.8 | 2026-05-10 | e107 CMS 2.3.0 contains a remote code execution vulnerability that allows authenticated users with theme installation permissions to execute arbitrary commands… |
CVE-2022-50939 | High | 7.2 | 2026-01-13 | e107 CMS version 3.2.1 contains a critical file upload vulnerability that allows authenticated administrators to override arbitrary server files through path t… |
CVE-2022-50916 | High | 7.2 | 2026-01-13 | e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrators to override server files through the Media Manager import… |
CVE-2022-50907 | High | 7.2 | 2026-01-13 | e107 CMS version 3.2.1 contains a file upload vulnerability that allows authenticated administrative users to bypass upload restrictions and execute PHP files… |
CVE-2022-50905 | Medium | 6.1 | 2026-01-13 | e107 CMS version 3.2.1 contains multiple vulnerabilities that allow cross-site scripting (XSS) attacks. The first vulnerability is a reflected XSS that occurs… |
CVE-2022-50906 | Medium | 4.8 | 2026-01-13 | e107 CMS 3.2.1 contains an upload restriction bypass vulnerability that allows authenticated administrators to upload malicious SVG files through the media man… |