13 matches found
Logic Flaw Vulnerability in Cicada Knowledge Enterprise Portal System
The underlying framework of Cicada Knowledge Enterprise Portal System is self-developed with built-in extension mechanism for easy customization and development. Cicada Knowledge Enterprise Portal System has a logic flaw vulnerability, which can be exploited by an attacker to authenticate differe...
XSS Vulnerability in Cicada Knowledge Enterprise Portal System
Cicada Knowledge Enterprise Portal System is an open source and free enterprise portal system. Cicada Knowledge Enterprise Portal System EPS 8.0 has an XSS vulnerability, users can use the front posting and reply function to upload malicious attachments, which leads to the administrator in the...
File Upload Vulnerability in Cicada Knowledge Enterprise Portal System
Cicada Knowledge Enterprise Portal System is an enterprise portal system designed for enterprise marketing use. A file upload vulnerability exists in Cicada Knowledge Enterprise Portal System, which can be exploited by attackers to gain control of the web server...
Logic Flaw Vulnerability in Cicada Knowledge Portal System
Cicada Knowledge Portal System chanzhiEPS is an open source and free enterprise portal system. It is built-in article publishing , member management , forum comments , product display , online sales , customer service tracking and other functions . Cicada Knowledge Portal System has a logic flaw...
Command Execution Vulnerabilities in Cicada Knowledge Enterprise Portal System V7.0.1 Backend Templates
Cicada Knowledge Enterprise Portal System is an open source and free enterprise portal system. Cicada Knowledge Enterprise Portal System V7.0.1 command execution vulnerability exists in the background template. An attacker can exploit the vulnerability to gain server privileges...
Code Execution Vulnerability in Cicada Knowledge Enterprise Portal System
Cicada Knowledge Enterprise Portal System is a web content management system. A code execution vulnerability exists in the Cicada Knowledge Enterprise Portal System. The vulnerability is due to improper handling of writing to a cache file. An attacker can construct a malicious request to write...
Directory Traversal Vulnerability in Cicada Knowledge Enterprise Portal System
Cicada Knowledge Enterprise Portal System is a web content management system. A directory traversal vulnerability exists in Cicada Knowledge Enterprise Portal System. The vulnerability is due to improper handling of reading cached files and can be exploited by an attacker to read PHP files on the...
Cicada Knowledge Enterprise Portal open source version 6.5 cross-site scripting vulnerabilities at the user login and backend logins
Cicada Knowledge Enterprise Portal System is an enterprise portal system designed for enterprise marketing use. Cicada Knowledge Enterprise Portal open source version 6.5 user login and background login at the cross-site scripting vulnerabilities, attackers can use the vulnerability to insert...
Cicada Knowledge Enterprise Portal open source version 6.5 suffers from cross-site scripting vulnerabilities
Cicada Knowledge Enterprise Portal System is an enterprise portal system designed for enterprise marketing use. Cicada Knowledge Enterprise Portal Open Source Edition 6.5 suffers from a cross-site scripting vulnerability, which can be exploited by attackers to insert malicious js code and obtain...
CSRF Vulnerability in Cicada CMS 6.2
Cicada Knowledge Enterprise Portal System is an open source and free enterprise portal system. CSRF vulnerability exists in Cicada Knowledge cms version 6.2. The vulnerability stems from the lack of token validation on the background page of Cicada Knowledge cms, which leads to the triggering of...
Storage-based Cross-site Scripting Vulnerability in Cicada Knowledge Enterprise Portal System Version 6.1
Cicada Knowledge Enterprise Portal System is a web content management system. A stored cross-site scripting vulnerability exists in Cicada Knowledge Enterprise Portal System version 6.1 Commodity Purchase, Delivery Address. The vulnerability allows attackers to steal administrator COOKIE...
Override vulnerability in the remove parameter of Cicada Knowledge Enterprise Portal and Ranch Collaboration Management System.
Cicada Knowledge Enterprise Portal System is a website content management system, and Ranch Coworking Management System is an enterprise coworking system. An override vulnerability exists in the remove parameter of Cicada Knowledge Enterprise Portal System and Ranzhi Collaboration Management...
Arbitrary File Upload Vulnerability in Cicada Knowledge Enterprise Portal System and Ranzhi Collaboration Management System
Cicada Knowledge Enterprise Portal System is a website content management system, and Ranch Coworking Management System is an enterprise coworking system. An arbitrary file upload vulnerability exists in Cicada Knowledge Enterprise Portal and Ranzhi Collaboration Management System, which can be...