Lucene search
K

65 matches found

Cvelist
Cvelist
added 2018/09/03 12:0 a.m.19 views

CVE-2018-16371

PESCMS Team 2.2.1 has multiple reflected XSS via the keyword parameter: g=Team&m=User&a=index&keyword=, g=Team&m=Usergroup&a=index&keyword=, g=Team&m=Department&a=index&keyword=, and g=Team&m=Bulletin&a=index&keyword=...

6.1AI score0.00707EPSS
Exploits1References1
CVE
CVE
added 2018/09/03 12:0 a.m.44 views

CVE-2018-16370

The vulnerability CVE-2018-16370 affects PESCMS Team 2.2.1. An attacker can upload and execute arbitrary PHP code by placing a .php file inside a ZIP archive and submitting via /Public/?g=Team&m=Setting&a=upgrade, enabling remote code execution with network access. Exploit details, affected versi...

9.8CVSS9.7AI score0.01783EPSS
Exploits1References1Affected Software1
CNVD
CNVD
added 2018/07/26 12:0 a.m.1 views

Code Execution Vulnerability in PESCMSDOC Document Management System

PESCMS DOC is a document system based on PESCMS 2.5. PESCMSDOC document management system code execution vulnerability, an attacker can use the vulnerability to execute remote code...

8AI score
Exploits0
CNVD
CNVD
added 2018/03/03 12:0 a.m.2 views

File Upload Vulnerability in PESCMS TEAM v2.1.0

PESCMS TEAM is a task management system open-sourced under the GPLv2 license. A file upload vulnerability exists in PESCMS TEAM v2.1.0 due to the system failing to perform a security check on uploaded zip archive files. An attacker can exploit this vulnerability to upload a Trojan horse file to...

7AI score
Exploits0
CNVD
CNVD
added 2017/07/08 12:0 a.m.2 views

Cross-Site Scripting Vulnerability in the PESCMS TEAM Task Management System

PESCMS TEAM is a task management system open-sourced under the GPLv2 license. A cross-site scripting vulnerability exists in PESCMS TEAM Task Management System v2.1.0, which allows an attacker to construct a malicious payload to be sent to a user to obtain sensitive information such as...

6AI score
Exploits0
Rows per page
Query Builder