4 matches found
CVE-2018-9993
YUNUCMS 1.0.7 has XSS via the content title on an admin/content/addcontent/cid/ page aka a news center page...
CVE-2018-9993
The CVE-2018-9993 entry concerns YUNUCMS 1.0.7, with a Cross-Site Scripting (XSS) vulnerability via the content title on the admin/content/addcontent/cid/## page (news center). The connected Red Hat, CNVD, CNVD-like, and NVD records consistently describe XSS in this CMS version. The provided docu...
Fyblogs website management system vulnerability-vulnerability warning-the black bar safety net
Background universal password 'or'='or' The backend file management presence of the bypass. Lead to browse to where the letter information. Information leaked! admin/uploadfile. asp? currentFolder=/upfiles/../ Vulnerability to prove: Google: inurl:type. asp? id=1 News Center Or: inurl:downloadok...
XYCMS law firm built Station system 1.1 upload vulnerability-vulnerability warning-the black bar safety net
Source code description: XYCMS law firm built Station system contains firm profile, lawyers style, news centre, service areas, typical cases, legal advice, qualification, contact us section. Background function: Enterprise information management: including basic information management, adding,...