Engineercms_project Engineercms

3 CVEs affecting Engineercms_project Engineercms. Latest disclosed: 2025-05-13. Critical: 2, High: 0.

Top CVEs affecting Engineercms_project Engineercms
CVESeverityScorePublishedSummary
CVE-2025-44831Critical9.82025-05-13EngineerCMS v1.02 through v2.0.5 has a SQL injection vulnerability in the /project/addproject interface.
CVE-2025-44830Critical9.82025-05-12EngineerCMS v1.02 through v.2.0.5 has a SQL injection vulnerability in the /project/addprojtemplet interface.
CVE-2021-36605Medium5.42021-07-30engineercms 1.03 is vulnerable to Cross Site Scripting (XSS). There is no escaping in the nickname field on the user list page. When viewing this page, the Jav…