CVE-2024-42625

FrogCMS v0.9.5 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /admin/?/layout/add...

Eramba 跨站脚本漏洞

Eramba is an open source, enterprise-level IT governance application from Eramba UK. The program has features such as IT security, compliance auditing and analysis. A security vulnerability exists in Eramba GRC Software version c2.8.1, which stems from a KPI Title text field in its Add feature th...

LogicalDOC Arbitrary File Upload Vulnerability

LogicalDOC is a set of document management system developed using Java technology . The system has Lucene full-text search indexing and automatic import and other functions. A security vulnerability exists in LogicalDoc versions prior to 8.3.3. The vulnerability can be exploited to upload arbitra...

maccms stored xss analysis-vulnerability warning-the black bar safety net

Team:c0deplay gbk utf8 the latest version of storagexss analysis The problem plus/comment/index.php page Comments Add Features function add // Here can actually use wide characters sql injectiondidn't follow up $ccontent= iconv 'UTF-8', 'gb2312//IGNORE' , $ccontent; $cname =...