EUVD-2022-52906

Malicious code in bioql PyPI...

EUVD-2025-5359

Malicious code in bioql PyPI...

EUVD-2023-42708

Malicious code in bioql PyPI...

CVE-2023-51154

Jizhicms v2.5 was discovered to contain an arbitrary file download vulnerability via the component /admin/c/PluginsController.php...

CVE-2025-25785

JizhiCMS v2.5.4 was discovered to contain a Server-Side Request Forgery SSRF via the component \c\PluginsController.php. This vulnerability allows attackers to perform an intranet scan via a crafted request...

JIZHICMS Security Vulnerabilities

Extreme Networks Technology JIZHICMS Extreme CMS is an open source content management system CMS from China's Extreme Networks Technology. A security vulnerability exists in JIZHICMS v2.5, which originates from the component /admin/c/PluginsController.php containing an arbitrary file download...

PT-2024-14060 · Jizhicms · Jizhicms

Name of the Vulnerable Software and Affected Versions: Jizhicms version 2.5 Description: The issue is related to an arbitrary file download vulnerability. It affects the component /admin/c/PluginsController.php. Recommendations: For Jizhicms version 2.5, consider restricting access to the...

Arbitrary file deletion

An arbitrary file download vulnerability in the /c/PluginsController.php component of jizhi CMS 1.9.5 allows attackers to execute arbitrary code via downloading a crafted plugin...

JIZHICMS Security Vulnerabilities

Extreme Networks Technology JIZHICMS Extreme CMS is an open source content management system CMS from China's Extreme Networks Technology Company. A security vulnerability exists in JIZHICMS version 1.9.5, which originates from an arbitrary file download vulnerability in the...

CVE-2022-31393

CVE-2022-31393 affects Jizhicms v2.2.5, with a Server-Side Request Forgery (SSRF) flaw exposed via the Index function in app/admin/c/PluginsController.php. Red Hat and NVD records confirm the issue and reference SSRF as the underlying vulnerability in this CMS. The CVSS metrics indicate a high-im...