8 matches found
EUVD-2020-24070
Malware in sbrugna...
EUVD-2020-24071
Malware in sbrugna...
PT-2022-9011 · Unknown · Annyshow Duxcms
Name of the Vulnerable Software and Affected Versions: annyshow DuxCMS version 2.1 Description: A vulnerability was found in the file admin.php&r=article/AdminContent/edit of the component Article Handler. The manipulation of the content argument leads to cross-site scripting. It is possible to...
PT-2022-9012 · Annyshow · Duxcms
Name of the Vulnerable Software and Affected Versions: annyshow DuxCMS version 2.1 Description: A problem has been identified that leads to cross-site request forgery. The issue can be exploited remotely. Recommendations: For annyshow DuxCMS version 2.1, at the moment, there is no information abo...
CVE-2020-36610
CVE-2020-36610 affects annyshow DuxCMS 2.1. The issue is a cross-site request forgery caused by manipulation of unknown code. The attack can be initiated remotely and exploitation has been disclosed publicly. No concrete patch/version mitigation is provided in the supplied documents; remediation ...
CVE-2020-36610 annyshow DuxCMS cross-site request forgery
A vulnerability was found in annyshow DuxCMS 2.1. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier ...
CVE-2020-36609 annyshow DuxCMS Article edit cross site scripting
A vulnerability was found in annyshow DuxCMS 2.1. It has been classified as problematic. This affects an unknown part of the file admin.php&r=article/AdminContent/edit of the component Article Handler. The manipulation of the argument content leads to cross site scripting. It is possible to...
CVE-2020-36609
CVE-2020-36609 affects annyshow DuxCMS 2.1. The vulnerability is a cross-site scripting in the Article Handler’s file admin.php&r=article/AdminContent/edit, triggered by manipulating the content parameter. Attacks can be initiated remotely and public exploit information exists. No patch/version f...