19 matches found
CVE-2020-10479
CSRF in admin/add-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new news article via a crafted request...
CVE-2025-12330
A security flaw has been discovered in Willow CMS up to 1.4.0. This issue affects some unknown processing of the file /admin/articles/add of the component Add Post Page. The manipulation of the argument title/body results in cross site scripting. The attack may be launched remotely. The exploit h...
EUVD-2018-21515
Malware in sbrugna...
EUVD-2020-14094
Malware in sbrugna...
EUVD-2018-3699
Malware in sbrugna...
CVE-2020-21321
emlog v6.0 contains a Cross-Site Request Forgery CSRF via /admin/link.php?action=addlink, which allows attackers to arbitrarily add articles...
CVE-2018-11679
An issue was discovered in CmsEasy 6.120180508. There is a CSRF vulnerability that can add an article via /index.php?case=table=add=archivedir=admin...
maccms10 安全漏洞
maccms10 is magicblack open source a set of PHP + MYSQL environment running under the perfect and powerful rapid website building system. A security vulnerability exists in maccms10 version v2025.1000.4047, which originates from a server-side request forgery in the Add Article feature...
CVE-2023-51246
A Cross Site Scripting XSS vulnerability in GetSimple CMS 3.3.16 exists when using Source Code Mode as a backend user to add articles via the /admin/edit.php page...
CVE-2020-21321
The CVE-2020-21321 entry concerns emlog v6.0 and describes a Cross-Site Request Forgery (CSRF) vulnerability on the endpoint /admin/link.php?action=addlink, which enables attackers to arbitrarily add articles. The connected documents confirm this CSRF issue, but do not provide explicit root-cause...
CVE-2020-10479
CSRF in admin/add-news.php in Chadha PHPKB Standard Multi-Language 9 allows attackers to add a new news article via a crafted request...
CmsEasy Cross-Site Request Forgery Vulnerability
CmsEasy is a CMS Content Management System for creating responsive websites from China's Kyushu E-Tech. rich text editor is one of the rich text editors. A cross-site request forgery vulnerability exists in the rich text editor in CmsEasy version 6.120180508. The vulnerability can be exploited by...
Cross site request forgery (csrf)
An issue was discovered in CmsEasy 6.120180508. There is a CSRF vulnerability that can add an article via /index.php?case=table&act=add&table=archive&admindir=admin...
CVE-2018-11679
An issue was discovered in CmsEasy 6.120180508. There is a CSRF vulnerability that can add an article via /index.php?case=table&act=add&table=archive&admindir=admin...
CVE-2018-11679
An issue was discovered in CmsEasy 6.120180508. There is a CSRF vulnerability that can add an article via /index.php?case=table&act=add&table=archive&admindir=admin...
Cross site request forgery (csrf)
An issue was discovered in idreamsoft iCMS through 7.0.7. CSRF exists in admincp.php, as demonstrated by adding an article via an app=article&do=save&frame=iPHP request...
idreamsoft iCMS Cross-Site Request Forgery Vulnerability
idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in the admincp.php file in idreamsoft iCMS 7.0.7 and earlier versions. A remote attacker can exploit this vulnerability by sending an...
Explay CMS <= 2.1 SQL Injection Vulnerabilities
=============================================== Explay CMS = 2.1 SQL Injection Vulnerabilities =============================================== 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' /' / /' 0 0 /, // ,/ / 1 1 // /' / // /' / /' 0 0 / / / / / / 1 1 / / 0 ...
Joomla 1.5.15 Persistant XSS Vulnerability
Exploit for unknown platform in category web applications ========================================== Joomla 1.5.15 Persistant XSS Vulnerability ========================================== prog ------------- Joomla 1.5.15 vuln ------------- Persistant XSS in 'Author Alias' source -------------...