54 matches found
EUVD-2019-17802
Malware in sbrugna...
EUVD-2020-10342
Malware in sbrugna...
EUVD-2019-19187
Malware in sbrugna...
EUVD-2023-23799
Malicious code in bioql PyPI...
CVE-2020-17563
Path Traversal in FeiFeiCMS v4.0 allows remote attackers to delete arbitrary files by sending a crafted HTTP request to " /index.php?s=/admin-tpl-del="...
CVE-2020-17564
Path Traversal in FeiFeiCMS v4.0 allows remote attackers to delete arbitrary files by sending a crafted HTTP request to the " Admin/DataAction.class.php" component...
CVE-2019-9825
FeiFeiCMS 4.1.190209 allows remote attackers to upload and execute arbitrary PHP code by visiting index.php?s=Admin-Index to modify the set of allowable file extensions, as demonstrated by adding php to the default jpg,gif,png,jpeg setting, and then using the "add article" feature...
CVE-2020-18418
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
Cross site request forgery (csrf)
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
CVE-2020-18418
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
CVE-2020-18418
The provided documents identify a CSRF vulnerability in FeiFeiCMS v4.1.190209 that lets an attacker create administrator accounts via /index.php?s=Admin-Admin-Insert. The CVE entry CVE-2020-18418 notes this is a high-severity issue (CVSS v3.1: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H; base score 8.8)....
FeiFeiCms 跨站请求伪造漏洞
FeiFeiCms FeiFei Movie & TV Navigation System is a PHP-based movie & TV content management system CMS. A security vulnerability exists in FeiFeiCMS v4.1.190209. An attacker can exploit this vulnerability to create an administrator account via /index.php?s=Admin-Admin-Insert...
CVE-2020-18418
A Cross site request forgery CSRF vulnerability was discovered in FeiFeiCMS v4.1.190209, which allows attackers to create administrator accounts via /index.php?s=Admin-Admin-Insert...
PT-2023-11502 · Feifeicms · Feifeicms
Name of the Vulnerable Software and Affected Versions: FeiFeiCMS version 4.1.190209 Description: A Cross site request forgery CSRF issue was discovered, allowing attackers to create administrator accounts via the "/index.php?s=Admin-Admin-Insert" endpoint. This enables unauthorized access to the...
CVE-2023-1565
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2023-1565
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
Cross site scripting
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2023-1565 FeiFeiCMS Extension Tool slide_add.html cross site scripting
A vulnerability was found in FeiFeiCMS 2.7.130201. It has been classified as problematic. This affects an unknown part of the file \Public\system\slideadd.html of the component Extension Tool. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2023-1565
CVE-2023-1565 affects FeiFeiCMS 2.7.130201, specifically the Extension Tool file path Public/system/slide_add.html. The vulnerability is a Cross-Site Scripting flaw that can be triggered remotely via manipulation of the targeted HTML. Multiple connected sources confirm the existence and public di...
PT-2023-17081 · Feifeicms · Feifeicms
Name of the Vulnerable Software and Affected Versions: FeiFeiCMS version 2.7.130201 Description: A vulnerability was found in the Extension Tool component, specifically affecting the file Publicsystemslide add.html. This issue leads to cross-site scripting and can be initiated remotely. The explo...