8.8CVSS
8.6AI Score
0.001EPSS
Directory Traversal in Skycaiji v1.3 allows remote attackers to obtain sensitive information via the component 'index.php?m=admin&c=Tool&a=log&file=D%3A%5CphpStudy%5CWWW%5Cindex.php'.
5.3CVSS
5AI Score
0.003EPSS
Skycaiji v2.4 was discovered to contain a remote code execution (RCE) vulnerability via /SkycaijiApp/admin/controller/Develop.php.
7.2CVSS
7.4AI Score
0.003EPSS
Skycaiji v2.5.1 was discovered to contain a deserialization vulnerability via /SkycaijiApp/admin/controller/Mystore.php.
9.8CVSS
9.5AI Score
0.002EPSS
skycaiji v2.5.4 is vulnerable to Cross Site Scripting (XSS). Attackers can achieve backend XSS by deploying malicious JSON data.
5.4CVSS
5.2AI Score
0.001EPSS