Lucene search
K

7 matches found

CVE
CVE
added 2025/08/14 12:0 a.m.20 views

CVE-2025-51965

CVE-2025-51965 affects OURPHP up to version 8.6.1, where the vulnerability is a Cross‑Site Scripting (XSS) flaw in the Name field of the Complete Profile function in My User Center, accessible after front‑end registration. The underlying issue and exploitation details are not further elaborated i...

6.1CVSS6.1AI score0.00188EPSS
Exploits0References2
Prion
Prion
added 2023/04/26 5:15 p.m.18 views

Cross site scripting

OURPHP = 7.2.0 is vulnerale to Cross Site Scripting XSS via /client/manage/ourphpout.php...

5.8CVSS5.8AI score0.08115EPSS
Exploits9References1Affected Software1
CNVD
CNVD
added 2020/02/28 12:0 a.m.1 views

File deletion vulnerability in ourphp v1.9.1 backend

OURPHP is Harbin Weicheng Technology Co., Ltd. developed a PHP + MySQL based on the development of W3C standards-compliant building system. ourphp v1.9.1 arbitrary file deletion vulnerability exists in the background. Attackers can use this vulnerability to delete website files, the integrity of...

7AI score
Exploits0
CNVD
CNVD
added 2018/06/22 12:0 a.m.2 views

Arbitrary File Read Vulnerability in OurPHP v1.8.0

OURPHP 傲派建站系统 is a website content management system developed using PHP language, the developer is Harbin Weicheng Technology Co. OurPHP v1.8.0 suffers from an arbitrary file reading vulnerability. An attacker can exploit the vulnerability to read sensitive files...

6.9AI score
Exploits0
CNVD
CNVD
added 2018/01/29 12:0 a.m.2 views

File upload vulnerability in ourphp v1.8.0

Ourphp website building system is a php+mysql website building system. ourphp v1.8.0 version of the existence of file upload vulnerability, attackers can be edited through the background online template comes with the upload point to upload any suffix file and write a script Trojan, so as to obta...

7AI score
Exploits0
CNVD
CNVD
added 2017/08/10 12:0 a.m.3 views

SQL Injection Vulnerability in ourphp v1.7.3 ourphp_play.class.php Page

OurPHP 傲派建站系统 is a website content management system developed using PHP language, the developer is Harbin Weicheng Technology Co. A SQL injection vulnerability exists in the ourphp v1.7.3 ourphpplay.class.php page. An attacker can exploit this vulnerability to obtain sensitive database informati...

7.9AI score
Exploits0
CNVD
CNVD
added 2017/04/26 12:0 a.m.4 views

Stored XSS Vulnerability in OurPHP

OurPHP is a web content management system developed using the PHP language. A stored XSS vulnerability exists in OurPHP version V1.7.1, which can be exploited to insert cross-site code in the member center and obtain sensitive information from the administrator cookie...

6.1AI score
Exploits0
Rows per page
Query Builder