Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

CNVD
CNVDadded 2021/02/03 12:0 a.m.23 views

YCCMS file upload vulnerability

Yccms is a Php-based lightweight CMS builder from the Yccms team. yccms 3.3 has a file upload vulnerability, which stems from an error in the xhUp function's determination of request parameters and can be exploited by attackers to cause remote code execution...

9.8CVSS4.3AI score0.02994EPSS
Exploits1References1
OSV
OSVadded 2021/02/01 6:15 p.m.1 views

CVE-2020-20287

Unrestricted file upload vulnerability in the yccms 3.3 project. The xhUp function's improper judgment of the request parameters, triggers remote code execution...

9.8CVSS6AI score0.02994EPSS
Exploits1References2
CNNVD
CNNVDadded 2021/02/01 12:0 a.m.5 views

yccms 代码问题漏洞

Yccms is a Php-based lightweight CMS builder from the Yccms team. yccms 3.3 has a file upload vulnerability, which stems from an error in the xhUp function's determination of request parameters and can be exploited by attackers to cause remote code execution...

9.8CVSS7.6AI score0.02994EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2021/02/01 12:0 a.m.3 views

PT-2021-10471 · Yccms · Yccms

Name of the Vulnerable Software and Affected Versions: yccms version 3.3 Description: The issue is related to an unrestricted file upload vulnerability. It is caused by the xhUp function's improper judgment of the request parameters, which can trigger remote code execution. Recommendations: For...

9.8CVSS9.7AI score0.02994EPSS
Exploits1References5
Rows per page
Query Builder