Lucene search
+L

155 matches found

Prion
Prion
added 2022/06/23 5:15 p.m.20 views

Cross site scripting

74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting XSS vulnerability via the path /index/notice/show...

4.3CVSS6AI score0.00632EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/06/23 5:15 p.m.20 views

Cross site scripting

74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting XSS vulnerability via the path /company...

4.3CVSS6AI score0.00632EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/06/23 5:15 p.m.23 views

Sql injection

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/campus/campusjob...

5CVSS7.8AI score0.00923EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/06/23 5:15 p.m.18 views

Cross site scripting

74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting XSS vulnerability via the path /company/viewbebrowsed/total...

4.3CVSS6AI score0.00632EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/06/23 5:15 p.m.24 views

Cross site scripting

74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting XSS vulnerability via the path /company/downresume/total/nature...

4.3CVSS6AI score0.00632EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2022/06/23 12:0 a.m.3 views

74cms SQL注入漏洞

74cmsSE is a free open source professional recruitment system based on PHP MYSQL. 74cmsSE suffers from a SQL injection vulnerability, which originates from a keyword parameter in /home /jobfairol/resumelist that lacks validation for external input SQL statements. An attacker could use this...

7.5CVSS6.2AI score0.0101EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/06/23 12:0 a.m.6 views

74cms SQL注入漏洞

74cmsSE is a free open source professional recruitment system based on PHP MYSQL. 74cmsSE is vulnerable to SQL injection, which results from a lack of validation of externally entered SQL statements in the /home/resume/index keyword parameter. An attacker could use this vulnerability to execute...

7.5CVSS6.1AI score0.00923EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/06/22 6:42 p.m.28 views

CVE-2022-33097

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/campus/campusjob...

8AI score0.00923EPSS
Exploits1References1
CVE
CVE
added 2022/06/22 6:42 p.m.70 views

CVE-2022-33097

CVE-2022-33097 affects 74cmsSE v3.5.1. Root cause: SQL injection via the keyword parameter in /home/campus/campus_job. Impact: attacker could execute arbitrary SQL to access data. Exploitation details are not provided in the documents; no remediation details are included in the connected sources.

7.5CVSS7.7AI score0.00923EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/06/22 6:42 p.m.35 views

CVE-2022-33095

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/jobfairol/resumelist...

8AI score0.0101EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/06/22 6:42 p.m.28 views

CVE-2022-33096

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/resume/index...

8AI score0.00923EPSS
Exploits1References1
CVE
CVE
added 2022/06/22 6:42 p.m.78 views

CVE-2022-33096

CVE-2022-33096 affects 74cmsSE v3.5.1, with a SQL injection in the keyword parameter of /home/resume/index. The vulnerability arises from unsanitized input used in SQL queries, exposing potentially confidential data. Documented impact under CVSS 3.1 indicates high confidentiality impact (C:H) wit...

7.5CVSS7.7AI score0.00923EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/06/22 6:42 p.m.73 views

CVE-2022-33095

CVE-2022-33095 affects 74cmsSE v3.5.1, with a SQL injection in the keyword parameter at /home/jobfairol/resumelist. The CNVD/CNNVD entries describe lack of input validation enabling arbitrary SQL execution to access data, while Red Hat/ENISA entries confirm the issue but do not provide concrete f...

7.5CVSS7.7AI score0.0101EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/06/22 6:42 p.m.76 views

CVE-2022-33094

Summary: CVE-2022-33094 affects 74cmsSE v3.5.1, where a SQL injection vulnerability exists via the keyword parameter at /home/job/map. The issue arises from insufficient input validation, allowing an attacker to manipulate SQL queries and potentially access sensitive data. The CVSS data in the pr...

7.5CVSS7.7AI score0.00923EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/06/22 6:42 p.m.30 views

CVE-2022-33094

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/job/map...

8AI score0.00923EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/06/22 6:42 p.m.24 views

CVE-2022-33092

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/job/index...

8AI score0.00923EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/06/22 6:42 p.m.23 views

CVE-2022-33093

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the key parameter at /freelance/resumelist...

8AI score0.00923EPSS
Exploits1References1
CVE
CVE
added 2022/06/22 6:42 p.m.75 views

CVE-2022-33092

CVE-2022-33092 affects 74cmsSE v3.5.1, with a SQL injection in the keyword parameter used by /home/job/index. This is disclosed across multiple sources (CNVD, NVD, Red Hat, CNVD variants). The root cause is unsanitized input leading to SQL statement manipulation and potential data exposure. Explo...

7.5CVSS7.7AI score0.00923EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/06/22 6:42 p.m.103 views

CVE-2022-33093

CVE-2022-33093 affects 74cmsSE v3.5.1, with a SQL injection vulnerability in the /freelance/resume_list endpoint via the key parameter. The root cause is improper validation of external input in that parameter, enabling potentially unauthorized SQL execution and data exposure as described in CNVD...

7.5CVSS7.7AI score0.00923EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/06/22 6:42 p.m.34 views

CVE-2022-32131

74cmsSE v3.5.1 was discovered to contain a reflective cross-site scripting XSS vulnerability via the path /index/notice/show...

6.2AI score0.00632EPSS
Exploits1References1
Rows per page
Query Builder