EUVD-2018-10602

Malware in sbrugna...

EUVD-2024-49832

Malicious code in bioql PyPI...

EUVD-2024-49831

Malicious code in bioql PyPI...

EUVD-2022-36174

Malicious code in bioql PyPI...

EUVD-2023-50598

Malicious code in bioql PyPI...

EUVD-2021-31768

Malicious code in bioql PyPI...

CVE-2024-31741

Cross Site Scripting vulnerability in MiniCMS v.1.11 allows a remote attacker to run arbitrary code via crafted string in the URL after login...

CVE-2024-9282

A vulnerability was found in bg5sbk MiniCMS 1.11. It has been classified as problematic. Affected is an unknown function of the file page-edit.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...

CVE-2024-9281

A vulnerability was found in bg5sbk MiniCMS up to 1.11 and classified as problematic. This issue affects some unknown processing of the file post-edit.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and...

CVE-2022-33121

A Cross-Site Request Forgery CSRF in MiniCMS v1.11 allows attackers to arbitrarily delete local .dat files via clicking on a malicious link...

CVE-2020-36051

Directory traversal vulnerability in pageedit.php in MiniCMS V1.10 allows remote attackers to read arbitrary files via the state parameter...

CVE-2020-19896

File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php...

CVE-2020-17999

Cross Site Scripting XSS in MiniCMS v1.10 allows remote attackers to execute arbitrary code by injecting commands via a crafted HTTP request to the component "/mc-admin/post-edit.php"...

CVE-2020-36052

Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote attackers to include and execute arbitrary files via the state parameter...

CVE-2019-13341

In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...

CVE-2019-9603

MiniCMS 1.10 allows mc-admin/post.php?state=publish= CSRF to delete articles, a different vulnerability than CVE-2018-18891...

CVE-2019-13186

In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the tags box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, and CVE-2018-20520...

CVE-2018-10227

MiniCMS v1.10 has XSS via the mc-admin/conf.php sitelink parameter...

CVE-2018-1000638

MiniCMS version 1.1 contains a Cross Site Scripting XSS vulnerability in http://example.org/mc-admin/page.php?date=payload that can result in code injection...

CVE-2019-13340

In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the content box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, CVE-2018-20520, and CVE-2019-13186...