Lucene search
K

177 matches found

NVD
NVD
added 2021/05/18 7:15 p.m.27 views

CVE-2020-18178

Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...

9.8CVSS0.01745EPSS
Exploits1References1
OSV
OSV
added 2021/05/18 7:15 p.m.7 views

CVE-2020-18178

Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...

9.8CVSS7.5AI score0.01745EPSS
Exploits1References1
Prion
Prion
added 2021/05/18 7:15 p.m.14 views

Path traversal

Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...

7.5CVSS9.1AI score0.01745EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/05/18 6:3 p.m.24 views

CVE-2020-18178

Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...

9.3AI score0.01745EPSS
Exploits1References1
CVE
CVE
added 2021/05/18 6:3 p.m.47 views

CVE-2020-18178

CVE-2020-18178 affects HongCMS v4.0.0. A path traversal vulnerability allows remote attackers to view, edit, and delete arbitrary files by crafting a POST request to /hcms/admin/index.php/language/ajax. Multiple sources (NVD, CNVD/CNNVD, Red Hat entry) confirm the issue; CVE details indicate high...

9.8CVSS9.2AI score0.01745EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2021/05/18 12:0 a.m.5 views

HongCMS 路径遍历漏洞

HongCMS Chinese and English website system is a lightweight website system with extremely fast access speed and easy to use. HongCMS version 4.0.0 suffers from a path traversal vulnerability. A remote attacker can exploit this vulnerability by sending a specially crafted POST request to the...

9.8CVSS5.9AI score0.01745EPSS
Exploits1References2
CNVD
CNVD
added 2019/12/09 12:0 a.m.1 views

File Inclusion Vulnerability in hongcms

HongCMS Chinese and English website system is a lightweight free open source website system for building various types of Chinese and English websites, while it is a small development framework. hongcms file inclusion vulnerability , an attacker can exploit the vulnerability to arbitrarily includ...

6.9AI score
Exploits0
CNVD
CNVD
added 2019/10/18 12:0 a.m.2 views

HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36218)

HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.01029EPSS
Exploits1References1
CNVD
CNVD
added 2019/10/18 12:0 a.m.3 views

HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36221)

HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.01029EPSS
Exploits1References1
CNVD
CNVD
added 2019/10/18 12:0 a.m.3 views

HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36217)

HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.01029EPSS
Exploits1References1
CNVD
CNVD
added 2019/10/18 12:0 a.m.3 views

HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36220)

HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.01029EPSS
Exploits1References1
CNVD
CNVD
added 2019/10/18 12:0 a.m.3 views

HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36222)

HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...

6.1CVSS6.4AI score0.01029EPSS
Exploits1References1
NVD
NVD
added 2019/10/16 10:15 p.m.17 views

CVE-2019-17610

HongCMS 3.0.0 has XSS via the install/index.php dbpassword parameter...

6.1CVSS6.1AI score0.01029EPSS
Exploits1References3
NVD
NVD
added 2019/10/16 10:15 p.m.19 views

CVE-2019-17611

HongCMS 3.0.0 has XSS via the install/index.php tableprefix parameter...

6.1CVSS6.1AI score0.01029EPSS
Exploits1References3
NVD
NVD
added 2019/10/16 10:15 p.m.15 views

CVE-2019-17607

HongCMS 3.0.0 has XSS via the install/index.php servername parameter...

6.1CVSS6.1AI score0.01029EPSS
Exploits1References3
OSV
OSV
added 2019/10/16 10:15 p.m.4 views

CVE-2019-17608

HongCMS 3.0.0 has XSS via the install/index.php dbname parameter...

6.1CVSS6.4AI score
Exploits0References3
OSV
OSV
added 2019/10/16 10:15 p.m.3 views

CVE-2019-17610

HongCMS 3.0.0 has XSS via the install/index.php dbpassword parameter...

6.1CVSS6.4AI score0.01029EPSS
Exploits1References3
NVD
NVD
added 2019/10/16 10:15 p.m.17 views

CVE-2019-17609

HongCMS 3.0.0 has XSS via the install/index.php dbusername parameter...

6.1CVSS6.1AI score0.01029EPSS
Exploits1References3
OSV
OSV
added 2019/10/16 10:15 p.m.3 views

CVE-2019-17609

HongCMS 3.0.0 has XSS via the install/index.php dbusername parameter...

6.1CVSS6.4AI score0.01029EPSS
Exploits1References3
NVD
NVD
added 2019/10/16 10:15 p.m.13 views

CVE-2019-17608

HongCMS 3.0.0 has XSS via the install/index.php dbname parameter...

6.1CVSS6.1AI score0.01029EPSS
Exploits1References3
Rows per page
Query Builder