Unrestricted File Upload in LAOBANCMS v2.0 allows remote attackers to upload arbitrary files by attaching a file with a ".jpg.php" extension to the component...
9.8CVSS
7.6AI Score
0.011EPSS
Cross Site Scripting (XSS) in LAOBANCMS v2.0 allows remote attackers to execute arbitrary code by injecting commands into the "Homepage Introduction" field of component...
4.8CVSS
7.4AI Score
0.001EPSS
Cross Site Scripting (XSS) in LAOBANCMS v2.0 allows remote attackers to execute arbitrary code by injecting commands into the "Website SEO Keywords" field on the page...
4.8CVSS
7.4AI Score
0.001EPSS
9.8CVSS
7.4AI Score
0.007EPSS
An issue was discovered in LAOBANCMS 2.0. It allows SQL Injection via the admin/login.php guanliyuan...
9.8CVSS
8.8AI Score
0.002EPSS
An issue was discovered in LAOBANCMS 2.0. It allows a /install/mysql_hy.php?riqi=0&i=0 attack to reset the admin password, even if install.txt...
9.8CVSS
7.3AI Score
0.003EPSS
An issue was discovered in LAOBANCMS 2.0. It allows XSS via the first input field to the admin/type.php?id=1...
4.8CVSS
6.1AI Score
0.001EPSS
An issue was discovered in LAOBANCMS 2.0. It allows remote attackers to execute arbitrary PHP code via the host parameter to the install/...
9.8CVSS
8.4AI Score
0.016EPSS
An issue was discovered in LAOBANCMS 2.0. It allows remote attackers to list .txt files via a direct request for the /data/0/admin.txt...
5.3CVSS
7.5AI Score
0.002EPSS
8.8CVSS
7.4AI Score
0.001EPSS
An issue was discovered in LAOBANCMS 2.0. It allows arbitrary file deletion via ../ directory traversal in the admin/pic.php del parameter, as demonstrated by deleting install/install.txt to permit a...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in LAOBANCMS 2.0. It allows XSS via the admin/liuyan.php neirong[]...
5.4CVSS
6.2AI Score
0.001EPSS
An issue was discovered in LAOBANCMS 2.0. /admin/login.php allows spoofing of the id and guanliyuan...
7.5CVSS
7.4AI Score
0.001EPSS
An issue was discovered in LAOBANCMS 2.0. It allows XSS via the admin/art.php?typeid=1 biaoti...
5.4CVSS
6.2AI Score
0.001EPSS