EUVD-2020-23588

Malware in sbrugna...

EUVD-2021-32153

Malicious code in bioql PyPI...

CVE-2021-45380

AppCMS 2.0.101 has a XSS injection vulnerability in \templates\m\inchead.php...

Cross site scripting

AppCMS 2.0.101 has a XSS injection vulnerability in \templates\m\inchead.php...

CVE-2021-45380

AppCMS 2.0.101 has a XSS injection vulnerability in \templates\m\inchead.php...

CVE-2021-45380

AppCMS 2.0.101 contains a Cross-Site Scripting (XSS) vulnerability in templates\m\inc_head.php. The issue is documented across multiple connected sources (Nuclei template CVE-2021-45380, CNVD/CNNVD entries) and is confirmed as a client-side script execution vector that could lead to session hijac...

CVE-2020-36006

AppCMS 2.0.101 in /admin/info.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site...

CVE-2020-36007

AppCMS 2.0.101 in /admin/template/tplapp.php has a cross site scripting attack vulnerability which allows the attacker to obtain sensitive information of other users...

CVE-2020-36004

AppCMS 2.0.101 in /admin/downloadframe.php has a SQL injection vulnerability which allows attackers to obtain sensitive database information...

CVE-2020-36005

AppCMS 2.0.101 in /admin/app.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site...

Arbitrary file deletion

AppCMS 2.0.101 in /admin/info.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site...

Arbitrary file deletion

AppCMS 2.0.101 in /admin/app.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site...

Sql injection

AppCMS 2.0.101 in /admin/downloadframe.php has a SQL injection vulnerability which allows attackers to obtain sensitive database information...

CVE-2020-36004

AppCMS 2.0.101 in /admin/downloadframe.php has a SQL injection vulnerability which allows attackers to obtain sensitive database information...

CVE-2020-36006

AppCMS 2.0.101 in /admin/info.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site...

CVE-2020-36005

AppCMS 2.0.101 in /admin/app.php has an arbitrary file deletion vulnerability which allows attackers to delete arbitrary files on the site...

CVE-2020-36004

AppCMS 2.0.101 in /admin/downloadframe.php has a SQL injection vulnerability which allows attackers to obtain sensitive database information...

CVE-2019-9595

AppCMS 2.0.101 allows XSS via the upload/callback.php params parameter...

Cross site scripting

AppCMS 2.0.101 allows XSS via the upload/callback.php params parameter...

CVE-2019-9595

CVE-2019-9595 affects AppCMS 2.0.101 and enables cross-site scripting via the upload/callback.php parameters. The vulnerability is a client-visible XSS in a parameter passed to the upload/callback.php endpoint. NVD reports CVSS v2 base score 4.3 (MEDIUM) with network access, and CVSS v3 base scor...