23 matches found
SSCMS 路径遍历漏洞
SSCMS SiteServerCMS is a content management system developed by SSCMS Corporation in China. Version 4.7.0 of SSCMS contains a path traversal vulnerability. This vulnerability stems from incorrect handling of the paramFilePaths parameter in the LayerImageController.Submit.cs file within the...
SSCMS SQL注入漏洞
SSCMS SiteServerCMS is a content management system developed by SSCMS Corporation in China. Version 7.4.0 of SSCMS contains an SQL injection vulnerability. This vulnerability stems from improper handling of the tableHandWrite parameter in the SitesAddController.Submit.cs file of the DDL Handler...
SSCMS 路径遍历漏洞
SSCMS SiteServerCMS is a content management system developed by SSCMS Corporation in China. Versions of SSCMS 7.4.0 and earlier contained a path traversal vulnerability. This vulnerability stemmed from the parameter path in the function PathUtils.RemoveParentPath used in files...
EUVD-2022-47246
Malicious code in bioql PyPI...
EUVD-2022-38945
Malicious code in bioql PyPI...
CVE-2022-36226
SiteServerCMS 5.X has a Remote-download-Getshell-vulnerability via /SiteServer/Ajax/ajaxOtherService.aspx...
SiteServerCMS Cross-Site Scripting Vulnerability
SSCMS SiteServerCMS SSCMS is an open source, cross-platform, enterprise-class content management system from China's SSCMS Inc. A cross-site scripting vulnerability exists in SiteServerCMS version 7.2.2, which stems from a cross-site scripting XSS vulnerability in the Content Management component...
SiteServerCMS Cross-Site Scripting Vulnerability
SSCMS SiteServerCMS SSCMS is an open source, cross-platform, enterprise-class content management system from China's SSCMS Inc. A cross-site scripting vulnerability exists in SiteServerCMS version 7.2.2, which stems from a cross-site scripting XSS vulnerability in the Column Management component...
CVE-2022-44299
SiteServerCMS 7.1.3 sscms has a file read vulnerability...
CVE-2022-44299
SiteServerCMS 7.1.3 sscms has a file read vulnerability...
SSCMS SiteServerCMS 路径遍历漏洞
SSCMS SiteServerCMS SSCMS is an open source, cross-platform, enterprise-level content management system from China-based SSCMS. A security vulnerability exists in SiteServerCMS version 7.1.3. An attacker can read arbitrary files by exploiting the vulnerability...
CVE-2022-44299
SiteServerCMS 7.1.3 sscms has a file read vulnerability...
CVE-2022-44299
SiteServerCMS 7.1.3 sscms has a file read vulnerability...
CVE-2022-44299
SiteServerCMS 7.1.3 sscms is vulnerable to an Arbitrary File Read due to insufficient validation in ReadTextAsync, enabling leakage of sensitive files. Public reports describe a path/file-read vulnerability that can disclose data without user interaction over network access; exploitation details ...
CVE-2022-36226
SiteServerCMS 5.X has a Remote-download-Getshell-vulnerability via /SiteServer/Ajax/ajaxOtherService.aspx...
CVE-2022-36226
SiteServerCMS 5.X has a Remote-download-Getshell-vulnerability via /SiteServer/Ajax/ajaxOtherService.aspx...
CVE-2022-36226
SiteServerCMS 5.X has a Remote-download-Getshell-vulnerability via /SiteServer/Ajax/ajaxOtherService.aspx...
Information disclosure
SiteServerCMS 5.X has a Remote-download-Getshell-vulnerability via /SiteServer/Ajax/ajaxOtherService.aspx...
CVE-2022-36226
SiteServerCMS 5.X is affected by a Remote-download-Getshell vulnerability exploitable through the /SiteServer/Ajax/ajaxOtherService.aspx API endpoint. The issue is associated with a remote download that can lead to arbitrary code execution on the server, with the CVE-2022-36226 entry reflecting a...
CVE-2022-36226
SiteServerCMS 5.X has a Remote-download-Getshell-vulnerability via /SiteServer/Ajax/ajaxOtherService.aspx...