CVE-2026-2965

A security flaw has been discovered in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.9. The affected element is an unknown function of the file /admin/SysModule/edit.html of the component System Extension Module. Performing a manipulation of the argument Title results in cross site scripting. The...

CVE-2026-2965

Summary: CVE-2026-2965 affects 07FLYCMS, 07FLY-CMS and 07FlyCRM up to version 1.2.9. The vulnerability exists in the System Extension Module, specifically the /admin/SysModule/edit.html file, where manipulating the Title argument causes cross-site scripting (XSS). The issue can be triggered remot...

CVE-2026-2965

A security flaw has been discovered in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.9. The affected element is an unknown function of the file /admin/SysModule/edit.html of the component System Extension Module. Performing a manipulation of the argument Title results in cross site scripting. The...

CVE-2026-2965 07FLYCMS/07FLY-CMS/07FlyCRM System Extension edit.html cross site scripting

A security flaw has been discovered in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.9. The affected element is an unknown function of the file /admin/SysModule/edit.html of the component System Extension Module. Performing a manipulation of the argument Title results in cross site scripting. The...

PT-2026-21489

A security flaw has been discovered in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.9. The affected element is an unknown function of the file /admin/SysModule/edit.html of the component System Extension Module. Performing a manipulation of the argument Title results in cross site scripting. The...

EUVD-2024-50195

Malicious code in bioql PyPI...

EUVD-2024-50163

Malicious code in bioql PyPI...

CVE-2025-10710

A flaw has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This affects an unknown part of the file /index.php. This manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used. Thi...

CVE-2025-10711

A vulnerability has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This vulnerability affects unknown code of the file /index.php/sysmanage/Login. Such manipulation of the argument Name leads to cross site scripting. The attack may be performed from remote. The exploit has been...

CVE-2025-10712

A vulnerability was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This issue affects some unknown processing of the file /index.php/Login/login. Performing manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-10712 07FLYCMS/07FLY-CMS/07FlyCRM login sql injection

A vulnerability was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This issue affects some unknown processing of the file /index.php/Login/login. Performing manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-10712 07FLYCMS/07FLY-CMS/07FlyCRM login sql injection

A vulnerability was found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This issue affects some unknown processing of the file /index.php/Login/login. Performing manipulation of the argument Username results in sql injection. It is possible to initiate the attack remotely. The exploit has...

CVE-2025-10712

Affected software: 07FLYCMS, 07FLY-CMS, and 07FlyCRM (up to 20250831). Root cause: SQL injection via manipulation of the Username argument in /index.php/Login/login. Impact: remote attacker could exploit to access or manipulate data (concise impact stated in sources; no exact data impact quantifi...

CVE-2025-10711

A vulnerability has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This vulnerability affects unknown code of the file /index.php/sysmanage/Login. Such manipulation of the argument Name leads to cross site scripting. The attack may be performed from remote. The exploit has been...

CVE-2025-10710

A flaw has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This affects an unknown part of the file /index.php. This manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used. Thi...

CVE-2025-10711 07FLYCMS/07FLY-CMS/07FlyCRM Login cross site scripting

A vulnerability has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This vulnerability affects unknown code of the file /index.php/sysmanage/Login. Such manipulation of the argument Name leads to cross site scripting. The attack may be performed from remote. The exploit has been...

CVE-2025-10711

The CVE-2025-10711 entry affects 07FLYCMS, 07FLY-CMS, and 07FlyCRM up to 20250831. The issue is a cross-site scripting vulnerability in the /index.php/sysmanage/Login file, caused by improper handling of the Name parameter. The attack can be performed remotely and the exploit has been publicly di...

CVE-2025-10710 07FLYCMS/07FLY-CMS/07FlyCRM index.php cross site scripting

A flaw has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This affects an unknown part of the file /index.php. This manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used. Thi...

CVE-2025-10710 07FLYCMS/07FLY-CMS/07FlyCRM index.php cross site scripting

A flaw has been found in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 20250831. This affects an unknown part of the file /index.php. This manipulation of the argument Name causes cross site scripting. The attack is possible to be carried out remotely. The exploit has been published and may be used. Thi...

CVE-2025-10710

CVE-2025-10710 affects 07FLYCMS, 07FLY-CMS, and 07FlyCRM up to 20250831. The flaw is an XSS in an unknown portion of /index.php caused by manipulation of the Name argument. It can be exploited remotely; exploit appears published. Affected products exist under multiple names; vendor did not respon...