Lucene search
K

31 matches found

CVE
CVE
added 2023/04/22 5:0 p.m.126 views

CVE-2023-2245

CVE-2023-2245 - hansunCMS 1.4.3 unrestricted upload . Affected component: the endpoint /ueditor/net/controller.ashx?action=catchimage in hansunCMS 1.4.3. Root cause described as manipulation allowing unrestricted upload, enabling remote exploitation. Sources indicate the vulnerability is critical...

9.8CVSS8.1AI score0.01283EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2023/04/22 12:0 a.m.4 views

HANSUNCMS 代码问题漏洞

HANSUNCMS is a website builder system of China HANSUN Technology HANSUN Company. HANSUNCMS 1.4.3 version of the code problematic vulnerability, the vulnerability stems from the file /ueditor/net/controller.ashx?action=catchimage there are problems, will lead to unrestricted uploads...

9.8CVSS6.7AI score0.01283EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2023/04/22 12:0 a.m.5 views

PT-2023-18506 · Hansuncms · Hansuncms

Name of the Vulnerable Software and Affected Versions: hansunCMS version 1.4.3 Description: A critical issue affects the /ueditor/net/controller.ashx?action=catchimage file, leading to unrestricted upload. The attack can be initiated remotely. The issue has been publicly disclosed and may be...

9.8CVSS6.6AI score0.01283EPSS
Exploits1References6
OSV
OSV
added 2022/09/02 6:15 p.m.12 views

CVE-2021-27693

Server-side Request Forgery SSRF vulnerability in PublicCMS before 4.0.202011.b via /publiccms/admin/ueditor when the action is catchimage...

9.8CVSS6.9AI score
Exploits0References2
NVD
NVD
added 2022/09/02 6:15 p.m.11 views

CVE-2021-27693

Server-side Request Forgery SSRF vulnerability in PublicCMS before 4.0.202011.b via /publiccms/admin/ueditor when the action is catchimage...

9.8CVSS0.00854EPSS
Exploits1References2
Prion
Prion
added 2022/09/02 6:15 p.m.14 views

Server side request forgery (ssrf)

Server-side Request Forgery SSRF vulnerability in PublicCMS before 4.0.202011.b via /publiccms/admin/ueditor when the action is catchimage...

7.5CVSS9.4AI score0.00854EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2022/09/02 12:0 a.m.3 views

PT-2022-9841 · Publiccms · Publiccms

Name of the Vulnerable Software and Affected Versions: PublicCMS versions prior to 4.0.202011.b Description: The issue is related to a Server-side Request Forgery SSRF vulnerability. It affects the /publiccms/admin/ueditor endpoint when the action is catchimage. This allows for potential...

9.8CVSS9.4AI score0.00854EPSS
Exploits1References6
OSV
OSV
added 2019/09/23 2:15 p.m.3 views

CVE-2019-16720

ZZZCMS zzzphp v1.7.2 does not properly restrict file upload in plugins/ueditor/php/controller.php?upfolder=news&action=catchimage, as demonstrated by uploading a .htaccess or .php5 file...

7.5CVSS7.1AI score
Exploits0References1
OSV
OSV
added 2019/03/30 1:29 p.m.5 views

CVE-2019-10647

ZZZCMS zzzphp v1.6.3 allows remote attackers to execute arbitrary PHP code via a .php URL in the plugins/ueditor/php/controller.php?action=catchimage source parameter because of a lack of inc/zzzfile.php restrictions. For example, source%5B%5D=http%3A%2F%2F192.168.0.1%2Ftest.php can be used if th...

9.8CVSS7.6AI score0.06589EPSS
Exploits1References1
Prion
Prion
added 2019/03/30 1:29 p.m.19 views

Code injection

ZZZCMS zzzphp v1.6.3 allows remote attackers to execute arbitrary PHP code via a .php URL in the plugins/ueditor/php/controller.php?action=catchimage source parameter because of a lack of inc/zzzfile.php restrictions. For example, source%5B%5D=http%3A%2F%2F192.168.0.1%2Ftest.php can be used if th...

7.5CVSS9.6AI score0.06589EPSS
Exploits1References1Affected Software1
seebug.org
seebug.org
added 2018/05/25 12:0 a.m.165 views

UEditor SSRF漏洞(JSP版本)分析与复现

作者: 浮萍@猎户安全实验室 公众号:猎户安全实验室 前些时间测试的时候遇到了一个系统采用了UEditor编辑器,版本为1.4.3。已知该编辑器v1.4.3版本存在SSRF漏洞,虽然是Bool型的SSRF,除了可以进行内网探测外,也可以根据web应用指纹信息,之后进行进一步的测试。 0x01 前言 查看官方的更新日志可以发现UEditor编辑器在版本1.4.3.1修复了SSRF漏洞。...

7.4AI score
Exploits0
Rows per page
Query Builder