63 matches found
CVE-2024-11492
CVE-2024-11492 affects 115cms up to 20240807 (Guizhou Forxin Technology). The vulnerability is a cross-site scripting issue in the admin web path /index.php/admin/web/appurladd.html triggered by the tid parameter, allowing remote initiation. Public disclosure is noted; vendor did not respond. The...
CVE-2024-11491
A vulnerability was found in 115cms up to 20240807. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php/admin/web/useradmin.html. The manipulation of the argument ks leads to cross site scripting. The attack may be launched remotely. The...
CVE-2024-11491
A vulnerability was found in 115cms up to 20240807. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php/admin/web/useradmin.html. The manipulation of the argument ks leads to cross site scripting. The attack may be launched remotely. The...
CVE-2024-11490
A vulnerability was found in 115cms up to 20240807. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php/admin/web/set.html. The manipulation of the argument type leads to cross site scripting. The attack can be launched remotely...
CVE-2024-11488
A vulnerability was found in 115cms up to 20240807 and classified as problematic. This issue affects some unknown processing of the file /app/admin/view/webuser.html. The manipulation of the argument ks leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
CVE-2024-11488
A vulnerability was found in 115cms up to 20240807 and classified as problematic. This issue affects some unknown processing of the file /app/admin/view/webuser.html. The manipulation of the argument ks leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
CVE-2024-11489
A vulnerability was found in 115cms up to 20240807. It has been classified as problematic. Affected is an unknown function of the file /index.php/admin/web/file.html. The manipulation of the argument ks leads to cross site scripting. It is possible to launch the attack remotely. The exploit has...
CVE-2024-11489
A vulnerability was found in 115cms up to 20240807. It has been classified as problematic. Affected is an unknown function of the file /index.php/admin/web/file.html. The manipulation of the argument ks leads to cross site scripting. It is possible to launch the attack remotely. The exploit has...
CVE-2024-11491 115cms useradmin.html cross site scripting
A vulnerability was found in 115cms up to 20240807. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php/admin/web/useradmin.html. The manipulation of the argument ks leads to cross site scripting. The attack may be launched remotely. The...
CVE-2024-11491 115cms useradmin.html cross site scripting
A vulnerability was found in 115cms up to 20240807. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php/admin/web/useradmin.html. The manipulation of the argument ks leads to cross site scripting. The attack may be launched remotely. The...
CVE-2024-11491
CVE-2024-11491 affects 115cms (up to version 20240807). Affected component: file /index.php/admin/web/useradmin.html. Root cause: manipulation of the ks argument enables cross-site scripting (XSS). Exploitation can be remote; the exploit has been disclosed publicly. Evidence in PT-2024-17030 and ...
CVE-2024-11490 115cms set.html cross site scripting
A vulnerability was found in 115cms up to 20240807. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php/admin/web/set.html. The manipulation of the argument type leads to cross site scripting. The attack can be launched remotely...
CVE-2024-11490 115cms set.html cross site scripting
A vulnerability was found in 115cms up to 20240807. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /index.php/admin/web/set.html. The manipulation of the argument type leads to cross site scripting. The attack can be launched remotely...
CVE-2024-11490
CVE-2024-11490 affects 115cms up to 20240807. The vulnerability is a Cross-Site Scripting (XSS) in an unknown function of /index.php/admin/web/set.html caused by manipulating the type argument. It can be exploited remotely and public exploits have been disclosed; the vendor reportedly did not res...
CVE-2024-11489 115cms file.html cross site scripting
A vulnerability was found in 115cms up to 20240807. It has been classified as problematic. Affected is an unknown function of the file /index.php/admin/web/file.html. The manipulation of the argument ks leads to cross site scripting. It is possible to launch the attack remotely. The exploit has...
CVE-2024-11489
CVE-2024-11489 affects 115cms up to 20240807. Affected is an unknown function in /index.php/admin/web/file.html; manipulating the ks argument enables cross-site scripting. Exploitation can be remote and details have been disclosed publicly. Multiple sources corroborate the issue and indicate the ...
CVE-2024-11489 115cms file.html cross site scripting
A vulnerability was found in 115cms up to 20240807. It has been classified as problematic. Affected is an unknown function of the file /index.php/admin/web/file.html. The manipulation of the argument ks leads to cross site scripting. It is possible to launch the attack remotely. The exploit has...
CVE-2024-11488 115cms web_user.html cross site scripting
A vulnerability was found in 115cms up to 20240807 and classified as problematic. This issue affects some unknown processing of the file /app/admin/view/webuser.html. The manipulation of the argument ks leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
CVE-2024-11488 115cms web_user.html cross site scripting
A vulnerability was found in 115cms up to 20240807 and classified as problematic. This issue affects some unknown processing of the file /app/admin/view/webuser.html. The manipulation of the argument ks leads to cross site scripting. The attack may be initiated remotely. The exploit has been...
PT-2024-17032 · 115Cms · 115Cms
Name of the Vulnerable Software and Affected Versions: 115cms versions up to 20240807 Description: A problematic vulnerability was found in 115cms, affecting an unknown part of the file /index.php/setpage/admin/pageAE.html. The manipulation of the tid argument leads to cross-site scripting. The...