3 matches found
EUVD-2020-30984
60CycleCMS 2.5.2 contains a cross-site scripting XSS vulnerability in news.php that allows attackers to inject malicious scripts through GET parameters. Attackers can craft malicious URLs with XSS payloads targeting the 'etsu' and 'ltsu' parameters to execute arbitrary scripts in victim's browser...
60CycleCMS 跨站脚本漏洞
60CycleCMS is an open-source content management system developed by 60CycleCMS. Version 2.5.2 of 60CycleCMS contains a cross-site scripting vulnerability. This vulnerability stems from the etsu and ltsu parameters in the news.php file, which allow cross-site scripting attacks. This could enable...
PHPGurukul Online Course Registration 注入漏洞
Online Course Registration is an online course registration system. Online Course Registration suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter newstitle in the file /news.php. An attacker can exploit this...