55 matches found
CVE-2018-18271
XSS exists in CMS Made Simple version 2.2.7 via the m1extra parameter in an admin/moduleinterface.php "Content--News--Add Article" action...
EUVD-2019-2927
Malware in sbrugna...
EUVD-2025-8658
Malicious code in bioql PyPI...
CVE-2025-10434
A vulnerability was identified in IbuyuCMS up to 2.6.3. Impacted is an unknown function of the file /admin/article.php?a=mod of the component Add Article Page. The manipulation of the argument Title leads to cross site scripting. The attack is possible to be carried out remotely. The exploit is...
CVE-2025-10434
A vulnerability was identified in IbuyuCMS up to 2.6.3. Impacted is an unknown function of the file /admin/article.php?a=mod of the component Add Article Page. The manipulation of the argument Title leads to cross site scripting. The attack is possible to be carried out remotely. The exploit is...
CVE-2025-10434 IbuyuCMS Add Article article.php cross site scripting
A vulnerability was identified in IbuyuCMS up to 2.6.3. Impacted is an unknown function of the file /admin/article.php?a=mod of the component Add Article Page. The manipulation of the argument Title leads to cross site scripting. The attack is possible to be carried out remotely. The exploit is...
CVE-2025-10434 IbuyuCMS Add Article article.php cross site scripting
A vulnerability was identified in IbuyuCMS up to 2.6.3. Impacted is an unknown function of the file /admin/article.php?a=mod of the component Add Article Page. The manipulation of the argument Title leads to cross site scripting. The attack is possible to be carried out remotely. The exploit is...
PT-2025-37460
Name of the Vulnerable Software and Affected Versions: IbuyuCMS versions up to 2.6.3 Description: A vulnerability exists in IbuyuCMS that allows for cross site scripting. The issue is located in the Add Article Page component, specifically within the file /admin/article.php?a=mod. Manipulation of...
CVE-2019-11226
CMS Made Simple 2.2.10 has XSS via the m1name parameter in "Add Article" under Content - Content Manager - News...
CVE-2025-28091
maccms10 v2025.1000.4047 has a Server-Side Request Forgery SSRF vulnerability via Add Article...
CVE-2025-28091
maccms10 v2025.1000.4047 has a Server-Side Request Forgery SSRF vulnerability via Add Article...
PT-2025-13582 · Maccms10 · Maccms10
Name of the Vulnerable Software and Affected Versions: maccms10 version 2025.1000.4047 Description: The issue is related to a Server-Side Request Forgery SSRF vulnerability. This vulnerability can be exploited via the Add Article feature. Recommendations: For maccms10 version 2025.1000.4047, as a...
CVE-2025-28091
CVE-2025-28091 pertains to the maccms10 package, version 2025.1000.4047, which is affected by a Server-Side Request Forgery (SSRF) in the Add Article feature. The vulnerability is documented across multiple sources (NVD, Red Hat, CVE list, etc.), confirming the affected product and the vulnerabil...
CVE-2025-28091
maccms10 v2025.1000.4047 has a Server-Side Request Forgery SSRF vulnerability via Add Article...
CVE-2025-28091
maccms10 v2025.1000.4047 has a Server-Side Request Forgery SSRF vulnerability via Add Article...
CVE-2025-0871 Maybecms Add Article index.php cross site scripting
A vulnerability classified as problematic has been found in Maybecms 1.2. This affects an unknown part of the file /mb/admin/index.php?u=article-edit of the component Add Article. The manipulation of the argument datainfocontent leads to cross site scripting. It is possible to initiate the attack...
JIZHICMS SQL注入漏洞
Extreme Networks Technology JIZHICMS Extreme CMS is an open source content management system CMS from China's Extreme Networks Technology Company. A security vulnerability exists in JIZHICMS version 1.9.5, which is caused by SQL injection and can be exploited by an attacker to run arbitrary SQL...
CVE-2020-36414
A stored cross scripting XSS vulnerability in CMS Made Simple 2.2.14 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "URL slug" or "Extra" fields under the "Add Article" feature...
CVE-2020-36414
A stored cross scripting XSS vulnerability in CMS Made Simple 2.2.14 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "URL slug" or "Extra" fields under the "Add Article" feature...
Cross site scripting
A stored cross scripting XSS vulnerability in CMS Made Simple 2.2.14 allows authenticated attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "URL slug" or "Extra" fields under the "Add Article" feature...