40 matches found
File Upload Vulnerability in Super cms v2.39 (CNVD-2021-32175)
Super CMS content management system by the SEO Research Center moonseo.cn in order to solve the problem of website optimization and research and development of a set of products, this product adopts an object-oriented approach to independent research and development of the MVC framework...
Command execution vulnerability in kiteCMS backend
KiteCMS open source web content management system CMS, the system is based on the framework ThinkPHP5.1. version of the development, applicable to individuals and enterprises to quickly build stations and development needs. kiteCMS backend command execution vulnerability , attackers can exploit t...
YzmCMS has an arbitrary file download vulnerability
YzmCMS is a lightweight open source content management system based on YZMPHP. YzmCMS has an arbitrary file download vulnerability that can only be exploited by attacks to obtain sensitive information...
Command execution vulnerability exists in OneThink (CNVD-2021-22773)
OneThink is an open source content management framework. OneThink suffers from a command execution vulnerability that can be exploited by an attacker to gain control of a web server...
Textpattern Cross-Site Scripting Vulnerability
Textpattern is a free open source content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in the Body parameter in Textpattern 4.8.4. No detailed vulnerability details are provided at this time...
Command execution vulnerability exists in UCMS (CNVD-2020-71677)
UCMS is a simple open source content management system. UCMS suffers from a command execution vulnerability that can be exploited by attackers to gain server privileges...
LJCMS suffers from a file upload vulnerability (CNVD-2020-26416)
LJCMS is an open source enterprise website management system based on PHP+MYSQL. LJCMS suffers from a file upload vulnerability that can be exploited by attackers to gain control of a web server...
File Inclusion Vulnerability in EyouCMS
EyouCMS is a free and open source enterprise content management system based on the TP5.0 framework as the core development. EyouCMS file inclusion vulnerability, an attacker can be exploited to include the execution of arbitrary files...
File Inclusion Vulnerability in DM Website System
DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM website builder system has a file inclusion vulnerability , attackers can use the vulnerability to obtain web server privileges...
SQL Injection Vulnerability in MetInfo7
MetInfo is an open source and free CMS building system suitable for enterprise building, MetInfo enterprise website management system is mainly used to build enterprise websites, using PHP + Mysql architecture. MetInfo7 SQL injection vulnerability , attackers can use the vulnerability to access...
Arbitrary file upload vulnerability in ucms backend
UCMS is a simple open source content management system. There is an arbitrary file upload vulnerability in the background of ucms, which can be exploited by attackers to gain server privileges...
CatfishCMS has an xss vulnerability
CatfishCMS is an open source content management system CMS written in PHP. CatfishCMS suffers from an xss vulnerability that can be exploited by an attacker to obtain an administrator cookie...
Command Execution Vulnerability in DM Enterprise Website System
DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM enterprise website building system has a command execution vulnerability , attackers can use the vulnerability to obtain server privilege...
Arbitrary File Deletion Vulnerability in DM Enterprise Website System
DM building system is developed by php + mysql a set of specialized for small and medium-sized enterprise website construction of open source cms. DM enterprise website builder system exists arbitrary file deletion vulnerability. Attackers can use this vulnerability to delete arbitrary files...
Yeager Cross-Site Scripting Vulnerability
Yeager is an open source content management system . Yeager suffers from a cross-site scripting vulnerability that allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to obtain sensitive information or hijack user sessions when malicious...
Parking Services Confirm Payment Card Breaches
Two services that allow users to reserve over the Internet offsite parking spots at airports confirmed week that they recently suffered data breaches and customer data may be at risk. Park ‘N Fly, headquartered in Atlanta, and OneStopParking, which is based in Florence, Ky, allow travelers to...
Debian Security Advisory DSA 2772-1 (typo3-src - cross-site scripting)
Markus Pieton and Vytautas Paulikas discovered that the embedded video and audio player in the TYPO3 web content management system is suspectible to cross-site-scripting. OpenVAS Vulnerability Test $Id: deb2772.nasl 6611 2017-07-07 12:07:20Z cfischer $ Auto-generated from advisory DSA 2772-1 usin...
Fedora Update for openarena FEDORA-2011-9898
Check for the Version of openarena OpenVAS Vulnerability Test Fedora Update for openarena FEDORA-2011-9898 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
[waraxe-2004-SA#022 - Multiple vulnerabilities in PostNuke 0.726 Phoenix - part 2]
================================================================================ waraxe-2004-SA022 ================================================================================ Multiple vulnerabilities in PostNuke 0.726 Phoenix - part 2...
[Full-Disclosure] [waraxe-2004-SA#020 - Multiple vulnerabilities in PostNuke 0.726 Phoenix]
================================================================================ waraxe-2004-SA020 ================================================================================ Multiple vulnerabilities in PostNuke 0.726 Phoenix...