27 matches found
DaiCuo CMS 安全漏洞
DaiCuo CMS is a PHP news article management system by DaiCuo individual developer. A security vulnerability exists in DaiCuo CMS version V1.3.13, which originates from an arbitrary file upload vulnerability in the image upload function...
DaiCuo CMS 安全漏洞
DaiCuo CMS is a PHP news article management system by DaiCuo individual developer. A security vulnerability exists in DaiCuo CMS version V1.3.13, which originates from a SQL injection vulnerability in file library hinkdbBuilder.php...
EUVD-2025-19489
Malicious code in bioql PyPI...
EUVD-2023-52967
Malicious code in bioql PyPI...
EUVD-2025-11898
Malicious code in bioql PyPI...
CVE-2025-6865
A vulnerability, which was classified as problematic, was found in DaiCuo up to 1.3.13. This affects an unknown part of the file /admin.php/addon/index. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...
CVE-2025-6865
A vulnerability, which was classified as problematic, was found in DaiCuo up to 1.3.13. This affects an unknown part of the file /admin.php/addon/index. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...
CVE-2025-6865
A vulnerability, which was classified as problematic, was found in DaiCuo up to 1.3.13. This affects an unknown part of the file /admin.php/addon/index. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...
CVE-2025-6865 DaiCuo index cross-site request forgery
A vulnerability, which was classified as problematic, was found in DaiCuo up to 1.3.13. This affects an unknown part of the file /admin.php/addon/index. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...
CVE-2025-6865
CVE-2025-6865 affects DaiCuo up to version 1.3.13, with a cross-site request forgery in the /admin.php/addon/index endpoint. The vulnerability is exploitable remotely and has been publicly disclosed; several sources corroborate an issue in this specific file path. The exact root cause is not full...
CVE-2025-6865 DaiCuo index cross-site request forgery
A vulnerability, which was classified as problematic, was found in DaiCuo up to 1.3.13. This affects an unknown part of the file /admin.php/addon/index. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the publ...
DaiCuo 安全漏洞
DaiCuo DaiCuo is an adaptive backend management framework based on ThinkPHP, Bootstrap and Jquery by China-based DaiCuo. A security vulnerability exists in DaiCuo 1.3.13 and earlier versions, which stems from a cross-site request forgery due to incorrect operation of the file /admin.php/addon/ind...
PT-2025-27371 · Daicuo · Daicuo
Name of the Vulnerable Software and Affected Versions: DaiCuo versions 1.3.13 and earlier Description: A problematic issue was found in DaiCuo, affecting an unknown part of the file "/admin.php/addon/index". This issue leads to cross-site request forgery. The attack can be initiated remotely...
CVE-2023-48940
A stored cross-site scripting XSS vulnerability in /admin.php of DaiCuo v2.5.15 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2025-3795
A vulnerability was found in DaiCuo 1.3.13. It has been rated as problematic. Affected by this issue is some unknown functionality of the component SEO Optimization Settings Section. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclose...
CVE-2025-3795
A vulnerability was found in DaiCuo 1.3.13. It has been rated as problematic. Affected by this issue is some unknown functionality of the component SEO Optimization Settings Section. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclose...
CVE-2025-3795
A vulnerability was found in DaiCuo 1.3.13. It has been rated as problematic. Affected by this issue is some unknown functionality of the component SEO Optimization Settings Section. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclose...
CVE-2025-3795 DaiCuo SEO Optimization Settings Section cross site scripting
A vulnerability was found in DaiCuo 1.3.13. It has been rated as problematic. Affected by this issue is some unknown functionality of the component SEO Optimization Settings Section. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclose...
CVE-2025-3795
DaiCuo 1.3.13 is affected by a cross-site scripting (XSS) vulnerability in the SEO Optimization Settings Section. The issue arises from manipulation of an unknown functionality within that component, and the attack can be launched remotely. The exploit has been disclosed publicly. Several sources...
CVE-2025-3795 DaiCuo SEO Optimization Settings Section cross site scripting
A vulnerability was found in DaiCuo 1.3.13. It has been rated as problematic. Affected by this issue is some unknown functionality of the component SEO Optimization Settings Section. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclose...