177 matches found
CVE-2020-18178
Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...
CVE-2020-18178
Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...
Path traversal
Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...
CVE-2020-18178
Path Traversal in HongCMS v4.0.0 allows remote attackers to view, edit, and delete arbitrary files via a crafted POST request to the component "/hcms/admin/index.php/language/ajax."...
CVE-2020-18178
CVE-2020-18178 affects HongCMS v4.0.0. A path traversal vulnerability allows remote attackers to view, edit, and delete arbitrary files by crafting a POST request to /hcms/admin/index.php/language/ajax. Multiple sources (NVD, CNVD/CNNVD, Red Hat entry) confirm the issue; CVE details indicate high...
HongCMS 路径遍历漏洞
HongCMS Chinese and English website system is a lightweight website system with extremely fast access speed and easy to use. HongCMS version 4.0.0 suffers from a path traversal vulnerability. A remote attacker can exploit this vulnerability by sending a specially crafted POST request to the...
File Inclusion Vulnerability in hongcms
HongCMS Chinese and English website system is a lightweight free open source website system for building various types of Chinese and English websites, while it is a small development framework. hongcms file inclusion vulnerability , an attacker can exploit the vulnerability to arbitrarily includ...
HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36218)
HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...
HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36221)
HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...
HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36217)
HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...
HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36220)
HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...
HongCMS Cross-Site Scripting Vulnerability (CNVD-2019-36222)
HongCMS is an open source lightweight content management system CMS. A cross-site scripting vulnerability exists in HongCMS. An attacker can exploit this vulnerability to execute client-side code...
CVE-2019-17610
HongCMS 3.0.0 has XSS via the install/index.php dbpassword parameter...
CVE-2019-17611
HongCMS 3.0.0 has XSS via the install/index.php tableprefix parameter...
CVE-2019-17607
HongCMS 3.0.0 has XSS via the install/index.php servername parameter...
CVE-2019-17608
HongCMS 3.0.0 has XSS via the install/index.php dbname parameter...
CVE-2019-17610
HongCMS 3.0.0 has XSS via the install/index.php dbpassword parameter...
CVE-2019-17609
HongCMS 3.0.0 has XSS via the install/index.php dbusername parameter...
CVE-2019-17609
HongCMS 3.0.0 has XSS via the install/index.php dbusername parameter...
CVE-2019-17608
HongCMS 3.0.0 has XSS via the install/index.php dbname parameter...