9 matches found
CVE-2023-44954
Cross Site Scripting vulnerability in BigTree CMS v.4.5.7 allows a remote attacker to execute arbitrary code via the ID parameter in the Developer Settings functions...
BigTree CMS 安全漏洞
BigTree CMS is a content management system. A cross-site scripting vulnerability exists in BigTree CMS version v4.5.7, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be exploited by a remote attacker to execute arbitrary code via ID...
Fastspot BigTree 跨站脚本漏洞
Fastspot BigTree is an open source content management system CMS based on PHP and MySQL from Fastspot Inc. in the United States. BigTree-CMS 4.4.3 suffers from a cross-site scripting vulnerability that stems from a lack of proper validation of client-side data by the WEB application. An attacker...
BigTree CMS cross-site scripting vulnerability (CNVD-2018-21319)
Fastspot BigTree is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A cross-site scripting vulnerability exists in /admin/ajax/file-browser/upload/ in Fastspot BigTree version 4.2.23. A remote attacker can exploit this vulnerability to inject...
BigTree cross-site scripting vulnerability (CNVD-2018-03229)
Fastspot BigTree is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A cross-site scripting vulnerability exists in the core/admin/ajax/developer/extensions/file-browser.php file in version 4.2.19 of Fastspot BigTree. A remote attacker can explo...
Fastspot BigTree CMS Unauthorized Operation Vulnerability
Fastspot BigTree CMS is the United States Fastspot company based on PHP and MySQL open source content management system CMS. An unauthorized operation vulnerability exists in Fastspot BigTree CMS version 4.2.18 and earlier, which stems from the program failing to prevent a user from deleting thei...
Fastspot BigTree CMS Cross-Site Request Forgery Vulnerability (CNVD-2017-06039)
Fastspot BigTree CMS is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A security vulnerability exists in the core/admin/modules/developer/header.php file in Fastspot BigTree CMS 4.2.17 and earlier versions. A remote attacker can exploit this...
Fastspot BigTree CMS Cross-Site Request Forgery Vulnerability (CNVD-2017-03388)
Fastspot BigTree CMS is the United States Fastspot company based on PHP and MySQL open source content management system CMS. A cross-site request forgery vulnerability exists in Fastspot BigTree CMS version 4.1.18. A remote attacker can exploit this vulnerability to perform unauthorized operation...
Bigtree Cms Cross Site Scripting Vulnerability
BigTree CMS is an open source content management system. A cross-site scripting vulnerability exists in Bigtreecms Bigtree Cms versions prior to 4.1.16, which stems from the program failing to adequately filter user-submitted input. An attacker can exploit the vulnerability to steal cookie-based...