CVE List


Moderate 4.8

SoyCMS 3.0.2 and earlier is affected by Reflected Cross-Site Scripting (XSS) which leads to Remote Code Execution (RCE) from a known vulnerability. This allows remote attackers to force the administrator to edit files once the adminsitrator loads a specially crafted webpage.

Published September 18, 2020.

Affected software

Soycms Project Soycms

Reference links

Sign Up for Alerts