14 matches found
EUVD-2023-57611
Malicious code in bioql PyPI...
CVE-2023-5287
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as problematic, was found in BEECMS 4.0. This affects an unknown part of the file /admin/admincontenttag.php?action=savecontent. The manipulation of the argument tag leads to cross site scripting. It is possible to initiate the attac...
CVE-2023-5287
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as problematic, was found in BEECMS 4.0. This affects an unknown part of the file /admin/admincontenttag.php?action=savecontent. The manipulation of the argument tag leads to cross site scripting. It is possible to initiate the attac...
CVE-2023-5287
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as problematic, was found in BEECMS 4.0. This affects an unknown part of the file /admin/admincontenttag.php?action=savecontent. The manipulation of the argument tag leads to cross site scripting. It is possible to initiate the attac...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as problematic, was found in BEECMS 4.0. This affects an unknown part of the file /admin/admincontenttag.php?action=savecontent. The manipulation of the argument tag leads to cross site scripting. It is possible to initiate the attac...
CVE-2023-5287 BEECMS cross site scripting
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as problematic, was found in BEECMS 4.0. This affects an unknown part of the file /admin/admincontenttag.php?action=savecontent. The manipulation of the argument tag leads to cross site scripting. It is possible to initiate the attac...
CVE-2023-5287 BEECMS cross site scripting
UNSUPPORTED WHEN ASSIGNED A vulnerability, which was classified as problematic, was found in BEECMS 4.0. This affects an unknown part of the file /admin/admincontenttag.php?action=savecontent. The manipulation of the argument tag leads to cross site scripting. It is possible to initiate the attac...
CVE-2023-5287
CVE-2023-5287 affects BEECMS 4.0 with an injected tag parameter in /admin/admin_content_tag.php?action=save_content leading to cross-site scripting. The vulnerability is exploitable remotely and the exploit is publicly disclosed. Multiple sources confirm the issue exists in BEECMS 4.0 and note it...
PT-2023-32008 · Beescms · Beescms
Name of the Vulnerable Software and Affected Versions: BEECMS version 4.0 Description: A vulnerability was found in BEECMS, affecting an unknown part of the file /admin/admin content tag.php?action=save content. The manipulation of the tag argument leads to cross-site scripting. It is possible to...
File Upload Vulnerability in BEECMS
BEECMS is an enterprise website management system based on PHP+Mysql architecture. A file upload vulnerability exists in BEECMS system, which can be exploited by attackers to gain server privileges...
WhatCMS - CMS Detection And Exploit Kit Based On Whatcms.org API
CMS Detection and Exploit Kit based on Whatcms.org API. Introduction Whatcms.sh can currently detect the use of more than 330 different CMS applications and services to later indicate a list of valid security audit tools for the detected CMS. You need the whatcms.org API to use the tool: Get API...
cmsPoc - A CMS Exploit Framework
A CMS Exploit Framework. Requirements python2.7 Works on Linux, Windows Usage usage: cmspoc.py -h -t TYPE -s SCRIPT -u URL optional arguments: -h, --help show this help message and exit -t TYPE, --type TYPE e.g.,phpcms -s SCRIPT, --script SCRIPT Select script -u URL, --url URL Input a target url...
CSRF vulnerability in the latest version of beecms
beecms is an enterprise website management system based on PHP+Mysql architecture. The latest version of beecms has a CSRF vulnerability. Due to the failure of the add administrator form in the background to protect the token, adminadmin.php 102 lines to start processing add administrator, failed...
BeeCMS v3.4 后台验证绕过
/includes/fun.php 弱验证导致后台验证绕过 0 v3.4 更新到最新版本...