24 matches found
Covid-19 Travel Pass Management System 跨站脚本漏洞
Covid-19 Travel Pass Management System is a Covid-19 travel pass management system. The Covid-19 Travel Pass Management System v1.0 version contains a cross-site scripting vulnerability that originates in /ctpms/classes/Users.php?f=save and lacks data validation filters for user-supplied data and...
Water-billing-management-system 跨站脚本漏洞
Water-billing-management-system is a water billing management system by Carlo Montero Personal Developer. A security vulnerability exists in Water-billing-management-system version 1.0, which originates from a /wbms/classes/Users.php?f=save, firstname stored cross-site scripting XSS attack...
WBCE CMS 跨站脚本漏洞
WBCE CMS is an open source content management system CMS based on PHP and MySQL. version 1.5.2 of WBCE CMS contains a cross-site scripting vulnerability that can be exploited by attackers to conduct cross-site scripting XSS attacks via /admin/users/save.php...
Cross site request forgery (csrf)
An issue was discovered in HongCMS v3.0.0. There is a CSRF vulnerability that can add an administrator account via the admin/index.php/users/save URI...