5 matches found
CVE-2020-18446
Cross Site Scripting XSS vulnerability exists in YUNUCMS 1.1.9 via the param parameter in the insertContent function in ContentModel.php...
CVE-2020-18445
Cross Site Scripting XSS vulnerability exists in YUNUCMS 1.1.9 via the upurl function in Page.php...
Cross site scripting
Cross Site Scripting XSS vulnerability exists in YUNUCMS 1.1.9 via the upurl function in Page.php...
CVE-2020-18446
Cross Site Scripting XSS vulnerability exists in YUNUCMS 1.1.9 via the param parameter in the insertContent function in ContentModel.php...
CVE-2020-18445
CVE-2020-18445 is an XSS vulnerability in YUNUCMS 1.1.9 exploitable via the upurl function in Page.php. The issue is caused by improper input handling in that function, enabling cross-site scripting. Affected component is the upurl pathway within Page.php of YUNUCMS 1.1.9. The CVSS summaries indi...