CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability classified as problematic was found in XiaoBingby TeaCMS 2.0.2. Affected by this vulnerability is an unknown functionality of the file src/main/java/me/teacms/controller/admin/UserManageController/addUser. The manipulation leads to cross-site request forgery. The attack can be...

5.3CVSS4.7AI score0.00156EPSS

Exploits1

RedhatCVE•added 2025/05/23 2:54 a.m.•3 views

CVE-2023-1616

A vulnerability was found in XiaoBingBy TeaCMS up to 2.0.2. It has been classified as problematic. Affected is an unknown function of the component Article Title Handler. The manipulation with the input leads to cross site scripting. It is possible to launch the attack remotely. The exploit has...

5.4CVSS6.3AI score0.0025EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:34 a.m.•6 views

CVE-2023-1483

A vulnerability has been found in XiaoBingBy TeaCMS up to 2.0.2 and classified as critical. This vulnerability affects unknown code of the file /admin/getallarticleinfo. The manipulation of the argument searchInfo leads to sql injection. The attack can be initiated remotely. VDB-223366 is the...

9.8CVSS7.6AI score0.00297EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:27 a.m.•1 views

CVE-2023-27090

Cross Site Scripting vulnerability found in TeaCMS storage allows attacker to cause a leak of sensitive information via the article title parameter...

5.4CVSS6.1AI score0.00213EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:26 a.m.•2 views

CVE-2023-27091

An unauthorized access issue found in XiaoBingby TeaCMS 2.3.3 allows attackers to escalate privileges via the id and keywords parameters...

7.2CVSS7.2AI score0.00352EPSS

Exploits1References1

NVD•added 2025/05/21 6:15 p.m.•8 views

CVE-2025-5033

5.3CVSS0.00156EPSS

Exploits1References4

Cvelist•added 2025/05/21 5:31 p.m.•14 views

CVE-2025-5033 XiaoBingby TeaCMS addUser cross-site request forgery

5.3CVSS0.00156EPSS

Exploits1References4

Vulnrichment•added 2025/05/21 5:31 p.m.•8 views

CVE-2025-5033 XiaoBingby TeaCMS addUser cross-site request forgery

5.3CVSS4.7AI score0.00156EPSS

Exploits1References4

CVE•added 2025/05/21 5:31 p.m.•43 views

CVE-2025-5033

CVE-2025-5033 affects XiaoBingby TeaCMS 2.0.2. The vulnerability is in an unknown functionality of src/main/java/me/teacms/controller/admin/UserManageController/addUser, leading to cross-site request forgery (CSRF). It can be triggered remotely and an exploit has been disclosed publicly. Multiple...

5.3CVSS4.7AI score0.00156EPSS

Exploits1References4Affected Software1

CNNVD•added 2025/05/21 12:0 a.m.•2 views

TeaCMS 安全漏洞

TeaCMS is a blogging system by xiaobingby personal developer. A security vulnerability exists in TeaCMS version 2.0.2, which originates from an improperly functioning file src/main/java/me/teacms/controller/admin/UserManageController/addUser, which may lead to cross-site request forgery...

5.3CVSS4.8AI score0.00156EPSS

Exploits1References4

Positive Technologies•added 2025/05/21 12:0 a.m.•2 views

PT-2025-22413 · Unknown · Xiaobingby Teacms

Name of the Vulnerable Software and Affected Versions: XiaoBingby TeaCMS version 2.0.2 Description: A problematic issue was found in an unknown functionality of the file src/main/java/me/teacms/controller/admin/UserManageController/addUser, leading to cross-site request forgery. The attack can be...

5.3CVSS4.3AI score0.00156EPSS

Exploits1References7

NVD•added 2023/04/20 8:15 p.m.•9 views

CVE-2023-27090

Cross Site Scripting vulnerability found in TeaCMS storage allows attacker to cause a leak of sensitive information via the article title parameter...

5.4CVSS5.2AI score0.00213EPSS

Exploits1References2

Prion•added 2023/04/20 8:15 p.m.•8 views

Cross site scripting

Cross Site Scripting vulnerability found in TeaCMS storage allows attacker to cause a leak of sensitive information via the article title parameter...

4.9CVSS5.3AI score0.00213EPSS

Exploits1References2Affected Software1

CNNVD•added 2023/04/20 12:0 a.m.•1 views

TeaCMS 跨站脚本漏洞

TeaCMS is a blogging system by the individual developer XiaoBingBy. A security vulnerability exists in TeaCMS, which stems from a stored cross-site scripting vulnerability that can be exploited by an attacker to disclose sensitive information...

5.4CVSS5.2AI score0.00213EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by