Lucene search
+L

37 matches found

nvd
nvd
added 4 days ago7 views

CVE-2026-15516

A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a...

6.3CVSS0.00274EPSS
Exploits0References6
euvd
euvd
added 4 days ago5 views

EUVD-2026-43258

A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a...

6.3CVSS5.8AI score0.00274EPSS
Exploits0References6
cve
cve
added 4 days ago14 views

CVE-2026-15516

Technical details are not publicly available in the provided documents. Monitor for updates on CVE-2026-15516 for affected versions, impact, and remediation.

6.3CVSS5.8AI score0.00274EPSS
Exploits0References6
cnnvd
cnnvd
added 2026/03/31 12:0 a.m.10 views

baserCMS 操作系统命令注入漏洞

BaserCMS is a corporate-level content management system CMS developed by the BaserCMS team. Versions of BaserCMS prior to 5.2.3 had a vulnerability related to operating system command injection. This vulnerability originated from the core module of the installation process. Attackers could...

9.8CVSS7.5AI score0.02059EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/02/03 3:11 a.m.12 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

6.1CVSS5.5AI score0.00254EPSS
Exploits1References1
osv
osv
added 2026/02/03 12:30 a.m.2 views

GHSA-9JJM-MC56-3QXV Subrion CMS vulnerable to cross-site scripting

Multiple reflected Cross-site Scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allow attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

6.1CVSS5.8AI score0.00254EPSS
Exploits1References3
github
github
added 2026/02/03 12:30 a.m.9 views

Subrion CMS vulnerable to cross-site scripting

Multiple reflected Cross-site Scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allow attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

6.1CVSS5.8AI score0.00254EPSS
Exploits1References3Affected Software1
cve
cve
added 2026/02/02 12:0 a.m.18 views

CVE-2025-70958

Subrion CMS v4.2.1 installation module is affected by multiple reflected XSS vulnerabilities. The issue allows an attacker to execute arbitrary JavaScript in the context of a user’s browser by injecting a crafted payload into the dbuser, dbpwd, or dbname parameters during installation. The CVE de...

6.1CVSS5.5AI score0.00254EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2026/02/02 12:0 a.m.28 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

0.00254EPSS
Exploits1References1
attackerkb
attackerkb
added 2026/02/02 12:0 a.m.4 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

5.5AI score0.00254EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2026/02/02 12:0 a.m.12 views

PT-2026-5704

Name of the Vulnerable Software and Affected Versions Subrion CMS version 4.2.1 Description The installation module of Subrion CMS contains reflected cross-site scripting XSS flaws. These flaws allow attackers to execute arbitrary Javascript in the context of a user's browser. Exploitation occurs...

6.1CVSS5.4AI score0.00254EPSS
Exploits1References8
vulnrichment
vulnrichment
added 2026/02/02 12:0 a.m.3 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

5.5AI score0.00254EPSS
Exploits1References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-43127

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.00402EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-52277

Malicious code in bioql PyPI...

6.2CVSS6.6AI score0.00115EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 6:53 a.m.8 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS6.9AI score0.00115EPSS
Exploits0References1
osv
osv
added 2024/12/12 12:15 p.m.3 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References1
nvd
nvd
added 2024/12/12 12:15 p.m.7 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS0.00115EPSS
Exploits0References1
cve
cve
added 2024/12/12 11:38 a.m.65 views

CVE-2024-54101

CVE-2024-54101 is described across multiple sources as a denial-of-service vulnerability in the installation module that can affect availability. Public records list Huawei HarmonyOS and EMUI as the affected ecosystem, with a local attack vector and low attack complexity (NVD metrics: AV:L, AC:L,...

6.2CVSS6.9AI score0.00115EPSS
Exploits0References1Affected Software2
cvelist
cvelist
added 2024/12/12 11:38 a.m.29 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS0.00115EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/12/12 11:38 a.m.12 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS6.9AI score0.00115EPSS
Exploits0References1
Rows per page
Query Builder