54 matches found
EUVD-2020-10342
Malware in sbrugna...
EUVD-2019-19187
Malware in sbrugna...
EUVD-2019-17802
Malware in sbrugna...
EUVD-2023-23799
Malicious code in bioql PyPI...
CVE-2020-17563
Path Traversal in FeiFeiCMS v4.0 allows remote attackers to delete arbitrary files by sending a crafted HTTP request to " /index.php?s=/admin-tpl-del="...
CVE-2020-17564
Path Traversal in FeiFeiCMS v4.0 allows remote attackers to delete arbitrary files by sending a crafted HTTP request to the " Admin/DataAction.class.php" component...
CVE-2019-9825
FeiFeiCMS 4.1.190209 allows remote attackers to upload and execute arbitrary PHP code by visiting index.php?s=Admin-Index to modify the set of allowable file extensions, as demonstrated by adding php to the default jpg,gif,png,jpeg setting, and then using the "add article" feature...
CVE-2020-18418
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
Cross site request forgery (csrf)
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
PT-2023-11502 · Feifeicms · Feifeicms
Name of the Vulnerable Software and Affected Versions: FeiFeiCMS version 4.1.190209 Description: A Cross site request forgery CSRF issue was discovered, allowing attackers to create administrator accounts via the "/index.php?s=Admin-Admin-Insert" endpoint. This enables unauthorized access to the...
CVE-2020-18418
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
CVE-2020-18418
The provided documents identify a CSRF vulnerability in FeiFeiCMS v4.1.190209 that lets an attacker create administrator accounts via /index.php?s=Admin-Admin-Insert. The CVE entry CVE-2020-18418 notes this is a high-severity issue (CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H; base score 8.8)....
CVE-2020-18418
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
FeiFeiCms 跨站请求伪造漏洞
FeiFeiCms FeiFei Movie & TV Navigation System is a PHP-based movie & TV content management system CMS. A security vulnerability exists in FeiFeiCMS v4.1.190209. An attacker can exploit this vulnerability to create an administrator account via /index.php?s=Admin-Admin-Insert...
CVE-2023-1565
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2023-1565
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
Cross site scripting
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2023-1565
CVE-2023-1565 affects FeiFeiCMS 2.7.130201, specifically the Extension Tool file path Public/system/slide_add.html. The vulnerability is a Cross-Site Scripting flaw that can be triggered remotely via manipulation of the targeted HTML. Multiple connected sources confirm the existence and public di...
CVE-2023-1565 FeiFeiCMS Extension Tool slide_add.html cross site scripting
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
FeiFeiCms 跨站脚本漏洞
FeiFeiCms FeiFei Movie Navigation System is a PHP-based movie and TV content management system CMS. A cross-site scripting vulnerability exists in FeiFeiCms version 2.7.130201, which stems from a problem with the file Publicsystemslideadd.html that can lead to cross-site scripting...