Package impact
Packagist / juzaweb/cms
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-6736 | high | 8.8 | 8.8 | 11mo ago | JuzaWeb CMS is vulnerable to Incorrect Privilege Assignment when installing certain components | |||
| CVE-2025-6735 | high | 8.8 | 8.8 | 11mo ago | JuzaWeb CMS is vulnerable to Incorrect Privilege Assignment when installing Import Page component | |||
| CVE-2025-5420 | unknown | — | — | 1y ago | juzaweb CMS allows cross-site scripting by uploading an SVG file | |||
| CVE-2023-46906 | unknown | — | — | 2y ago | juzawebCMS Incorrect Access Control vulnerability | |||
| CVE-2023-46468 | unknown | — | — | 3y ago | juzawebCMS Injection vulnerability |