Lucene search
K

109 matches found

CVE
CVE
added 2018/04/25 9:0 a.m.38 views

CVE-2018-10374

EasyCMS 1.3 is affected by a Cross‑Site Scripting (XSS) vulnerability in the s POST parameter (the value of the search box) sent to index.php?s=/index/search/index.html. The issue arises from XSS in that parameter, enabling injection of arbitrary script/HTML. This CVE entry corresponds to EasyCMS...

6.1CVSS5.9AI score0.00692EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2017/11/16 12:0 a.m.1 views

Logic Design Vulnerability in EasyCMS Frontend

EasyCMS is lightweight scalable open source content management program, following the Apache2 open source agreement. A logical design vulnerability exists in the frontend of EasyCMS. Attackers can log into the user center and modify other people's mailboxes and data by intercepting and modifying...

6.9AI score
Exploits0
CNVD
CNVD
added 2017/11/16 12:0 a.m.2 views

SQL Injection Vulnerability in EasyCMS PersonAction.class.php Source File

EasyCMS is lightweight scalable open source content management program, following the Apache2 open source agreement. SQL injection vulnerability exists in the PersonAction.class.php source file under App\Modules\Member\Action in the EasyCMS directory. The vulnerability is due to the system fails ...

7.6AI score
Exploits0
CNVD
CNVD
added 2016/05/21 12:0 a.m.2 views

Reflective XSS Vulnerability in EasyCMS Enterprise Marketing Management System Administration Backend

EasyCMS is a web content management system based on PHP+Mysql architecture. A reflective XSS vulnerability exists in the administration backend of the EasyCMS enterprise marketing management system, which can be exploited by an attacker to submit data with js code on the personal information page...

6.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

easycms <= 0.4.2 - Multiple Vulnerabilities

No description provided by source. --==+================================================================================+==-- --==+ easyCMS = 0.4.2 Multiple Remote Vulnerabilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8u...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/05/19 12:0 a.m.17 views

easycms-multi.txt

--==+================================================================================+==-- --==+ easyCMS 0.2 allows a simple sql statement to be inserted into the cookie bypassing the admin login. see below for the vulnerabilitys. SQL Injection version = 0.2: javascript:document.cookie = "user=' ...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/05/19 12:0 a.m.22 views

easyCMS &lt;= 0.4.2 Multiple Remote Vulnerabilities

No description provided by source. --==+================================================================================+==-- --==+ easyCMS = 0.4.2 Multiple Remote Vulnerabilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8u...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/05/18 12:0 a.m.22 views

Easycms 0.4.2 - Multiple Vulnerabilities

--==+================================================================================+==-- --==+ easyCMS 0.2 allows a simple sql statement to be inserted into the cookie bypassing the admin login. see below for the vulnerabilitys. SQL Injection version = 0.2: javascript:document.cookie = "user=' ...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/01/30 12:0 a.m.30 views

EasyCMS vulnerable to XSS injection.

The Norwegian web-publishing system EasyCMS www.easycms.no contains multiple input flaws letting users conduct successful XSS attacks. Both in the admin section, and the webpage that uses the system is vulnerable to XSS. It does not filter script tags and simple scripting like...

0.5AI score
Exploits0
Rows per page
Query Builder