Siteserver Sscms
2 CVEs affecting Siteserver Sscms. Latest disclosed: 2026-04-30. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-7435 | High | 7.2 | 2026-04-30 | SSCMS v7.4.0 contains a SQL injection vulnerability in the stl:sqlContent tag where the queryString attribute is passed directly to database execution without… |
CVE-2026-7429 | Medium | 4.6 | 2026-04-30 | SSCMS v7.4.0 contains a reflected cross-site scripting vulnerability in the STL processing endpoint that allows attackers to execute arbitrary JavaScript by cr… |