Lucene search
K

44 matches found

CNNVD
CNNVD
added 2026/04/25 12:0 a.m.8 views

JIZHICMS 注入漏洞

JIZHICMS is an open-source content management system developed by JIZHI Corporation in China. Versions of JIZHICMS 2.5.6 and earlier had a vulnerability related to SQL injection. This vulnerability stemmed from improper handling of parameters in the htmlspecialcharsdecode function located at...

5.8CVSS5.9AI score0.00253EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 12:38 p.m.7 views

CVE-2023-50692

File Upload vulnerability in JIZHICMS v.2.5, allows remote attacker to execute arbitrary code via a crafted file uploaded and downloaded to the downloadurl parameter in the app/admin/exts/ directory...

8.8CVSS7.8AI score0.00938EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:47 a.m.9 views

CVE-2022-31393

Jizhicms v2.2.5 was discovered to contain a Server-Side Request Forgery SSRF vulnerability via the Index function in app/admin/c/PluginsController.php...

9.1CVSS7.5AI score0.00977EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:47 a.m.5 views

CVE-2022-31390

Jizhicms v2.2.5 was discovered to contain a Server-Side Request Forgery SSRF vulnerability via the Update function in app/admin/c/TemplateController.php...

9.1CVSS7.5AI score0.00957EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-7921

Malware in sbrugna...

8.8CVSS8.7AI score0.00466EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-16387

Malware in sbrugna...

6.1CVSS6.3AI score0.00692EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-15108

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00389EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-34373

Malicious code in bioql PyPI...

9.8CVSS7AI score0.00867EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-36152

Malicious code in bioql PyPI...

5.4CVSS5.6AI score0.00343EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-31014

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00282EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7304

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00374EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-52905

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.00957EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:20 a.m.5 views

CVE-2024-33338

Cross Site Scripting vulnerability in jizhicms v.2.5.4 allows a remote attacker to obtain sensitive information via a crafted article publication request...

7.3CVSS6AI score0.00971EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:58 p.m.8 views

CVE-2021-36484

SQL injection vulnerability in JIZHICMS 1.9.5 allows attackers to run arbitrary SQL commands via add or edit article page...

9.8CVSS8.2AI score0.0085EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:18 p.m.8 views

CVE-2020-21228

JIZHICMS 1.5.1 contains a cross-site scripting XSS vulnerability in the component /user/release.html, which allows attackers to arbitrarily add an administrator cookie...

6.1CVSS5.7AI score0.01046EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/03/25 3:7 a.m.12 views

CVE-2025-2639

A vulnerability has been found in JIZHICMS up to 1.7.0 and classified as problematic. This vulnerability affects unknown code of the file /user/release.html of the component Article Handler. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has be...

5.3CVSS7.4AI score0.00374EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/25 2:25 a.m.9 views

CVE-2025-2638

A vulnerability, which was classified as problematic, was found in JIZHICMS up to 1.7.0. This affects an unknown part of the file /user/release.html of the component Article Handler. The manipulation of the argument ishot with the input 1 leads to improper authorization. It is possible to initiat...

5.3CVSS7.2AI score0.00374EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/25 12:8 a.m.23 views

CVE-2025-2637

A vulnerability, which was classified as problematic, has been found in JIZHICMS up to 1.7.0. Affected by this issue is some unknown functionality of the file /user/userinfo.html of the component Account Profile Page. The manipulation of the argument jifen leads to improper authorization. The...

5.3CVSS7.2AI score0.00389EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/23 2:31 a.m.10 views

CVE-2025-2639 JIZHICMS Article release.html improper authorization

A vulnerability has been found in JIZHICMS up to 1.7.0 and classified as problematic. This vulnerability affects unknown code of the file /user/release.html of the component Article Handler. The manipulation leads to improper authorization. The attack can be initiated remotely. The exploit has be...

5.3CVSS7.3AI score0.00374EPSS
Exploits1References4
CVE
CVE
added 2025/03/23 2:31 a.m.68 views

CVE-2025-2639

CVE-2025-2639 affects JIZHICMS up to version 1.7.0. The vulnerability is located in the Article Handler, specifically the /user/release.html path, and arises from improper authorization in that component. Attacks can be initiated remotely, and public exploit information exists. The reviewed sourc...

5.3CVSS5AI score0.00374EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder