Filtered by vendor Onethird Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2017-2123 1 Onethird 1 Onethird Cms 2025-04-20 N/A
Cross-site scripting vulnerability in OneThird CMS v1.73 Heaven's Door and earlier allows remote attackers to inject arbitrary web script or HTML via language.php.
CVE-2017-2124 1 Onethird 1 Onethird Cms 2025-04-20 N/A
Cross-site scripting vulnerability in OneThird CMS v1.73 Heaven's Door and earlier allows remote attackers to inject arbitrary web script or HTML via contact.php.
CVE-2020-5640 1 Onethird 1 Onethird 2024-11-21 9.8 Critical
Local file inclusion vulnerability in OneThird CMS v1.96c and earlier allows a remote unauthenticated attacker to execute arbitrary code or obtain sensitive information via unspecified vectors.