7210 matches found
CVE-2023-39699
CVE-2023-39699 affects IceWarp Mail Server v10.4.5 via a Local File Inclusion (LFI) in the /calendar/minimizer/index.php component. The vulnerability allows an attacker to include or execute files from the server’s local filesystem. Documented impact is high (potential code execution/unauthorized...
CVE-2023-4371 phpRecDB index.php cross site scripting
A vulnerability was found in phpRecDB 1.3.1. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument r/view leads to cross site scripting. The attack may be launched remotely. VDB-237194 is the identifier...
phpRecDB 跨站脚本漏洞
phpRecDB is a free php script from phpRecDB Inc. It is used to create a real-time record collection website. A cross-site scripting vulnerability exists in phpRecDB version 1.3.1, which stems from the lack of effective filtering and escaping of user-supplied data in the parameter r/view of the fi...
PT-2023-28928 · Phprecdb · Phprecdb
Name of the Vulnerable Software and Affected Versions: phpRecDB version 1.3.1 Description: A vulnerability was found in the file /index.php of phpRecDB, where the manipulation of the argument r/view leads to cross-site scripting. The attack may be launched remotely. The vendor was contacted early...
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php...
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php...
Code injection
An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php...
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php...
WUZHI CMS Security Vulnerabilities
WUZHI CMS is a PHP and MySQL based open source content management system CMS from WUZHI. A security vulnerability exists in WUZHI CMS version 4.1.0, which originated from allowing an attacker to execute arbitrary code via the uiditor parameter in index.php...
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote attackers to execte arbitrary code via the setting parameter to the ueditor in index.php...
CVE-2023-36312
There is a Cross Site Scripting XSS vulnerability in the value-enum-obfincludetimezone parameter of index.php in PHPJabbers Callback Widget v1.0...
CVE-2023-36312
There is a Cross Site Scripting XSS vulnerability in the value-enum-obfincludetimezone parameter of index.php in PHPJabbers Callback Widget v1.0...
CVE-2023-36309
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Document Creator v1.0...
CVE-2023-36309
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Document Creator v1.0...
CVE-2023-36309
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Document Creator v1.0...
CVE-2023-36310
There is a Cross Site Scripting XSS vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...
Cross site scripting
There is a Cross Site Scripting XSS vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...
Cross site scripting
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Callback Widget v1.0...
Cross site scripting
There is a Cross Site Scripting XSS vulnerability in the "action" parameter of index.php in PHPJabbers Document Creator v1.0...
Sql injection
There is a SQL injection SQLi vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...