21 matches found
EUVD-2025-16409
Malicious code in bioql PyPI...
EUVD-2025-16417
Malicious code in bioql PyPI...
CVE-2025-5328
A vulnerability was found in chshcms mccms 2.7. It has been declared as critical. This vulnerability affects the function restoredel of the file /sys/apps/controllers/admin/Backups.php. The manipulation of the argument dirs leads to path traversal. The attack can be initiated remotely. The exploi...
CVE-2025-5327
A vulnerability was found in chshcms mccms 2.7. It has been classified as critical. This affects the function index of the file sys/apps/controllers/api/Gf.php. The manipulation of the argument pic leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5328
A vulnerability was found in chshcms mccms 2.7. It has been declared as critical. This vulnerability affects the function restoredel of the file /sys/apps/controllers/admin/Backups.php. The manipulation of the argument dirs leads to path traversal. The attack can be initiated remotely. The exploi...
CVE-2025-5327
A vulnerability was found in chshcms mccms 2.7. It has been classified as critical. This affects the function index of the file sys/apps/controllers/api/Gf.php. The manipulation of the argument pic leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5327
A vulnerability was found in chshcms mccms 2.7. It has been classified as critical. This affects the function index of the file sys/apps/controllers/api/Gf.php. The manipulation of the argument pic leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5328
A vulnerability was found in chshcms mccms 2.7. It has been declared as critical. This vulnerability affects the function restoredel of the file /sys/apps/controllers/admin/Backups.php. The manipulation of the argument dirs leads to path traversal. The attack can be initiated remotely. The exploi...
CVE-2025-5328 chshcms mccms Backups.php restore_del path traversal
A vulnerability was found in chshcms mccms 2.7. It has been declared as critical. This vulnerability affects the function restoredel of the file /sys/apps/controllers/admin/Backups.php. The manipulation of the argument dirs leads to path traversal. The attack can be initiated remotely. The exploi...
CVE-2025-5328
CVE-2025-5328 affects chshcms mccms v2.7. The issue is in the function restore_del of /sys/apps/controllers/admin/Backups.php, where manipulating the dirs argument enables path traversal. A remote attacker can exploit this; the exploit has been disclosed publicly and vendor contact occurred witho...
CVE-2025-5328 chshcms mccms Backups.php restore_del path traversal
A vulnerability was found in chshcms mccms 2.7. It has been declared as critical. This vulnerability affects the function restoredel of the file /sys/apps/controllers/admin/Backups.php. The manipulation of the argument dirs leads to path traversal. The attack can be initiated remotely. The exploi...
CVE-2025-5327 chshcms mccms Gf.php index server-side request forgery
A vulnerability was found in chshcms mccms 2.7. It has been classified as critical. This affects the function index of the file sys/apps/controllers/api/Gf.php. The manipulation of the argument pic leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5327 chshcms mccms Gf.php index server-side request forgery
A vulnerability was found in chshcms mccms 2.7. It has been classified as critical. This affects the function index of the file sys/apps/controllers/api/Gf.php. The manipulation of the argument pic leads to server-side request forgery. It is possible to initiate the attack remotely. The exploit h...
CVE-2025-5327
CVE-2025-5327 affects the chshcms mccms 2.7 platform. The issue resides in the index function of sys/apps/controllers/api/Gf.php where manipulating the parameter pic triggers a server-side request forgery (SSRF). Attacks are described as removable/remote, and the exploit is publicly disclosed. Th...
PT-2025-23201 · Unknown · Chshcms Mccms
Name of the Vulnerable Software and Affected Versions: chshcms mccms version 2.7 Description: A critical issue affects the function index of the file sys/apps/controllers/api/Gf.php. The manipulation of the argument pic leads to server-side request forgery. It is possible to initiate the attack...
PT-2025-23202 · Unknown · Chshcms Mccms
Name of the Vulnerable Software and Affected Versions: chshcms mccms version 2.7 Description: A critical vulnerability affects the restore del function of the file /sys/apps/controllers/admin/Backups.php. The manipulation of the dirs argument leads to path traversal. The attack can be initiated...
程氏舞曲CMS论坛存储型XSS
简要描述: 洞被X了不少,留给我的太少。。。 我何时能 1个Ⅹ10个 详细说明: 1 发帖或者回复时插入文件,url构造成恶意地址,写上诱人的标题 利用firebug之类的工具修改html,这里我删除了target属性,页面就不会再新页面打开,还可以尝试添加属性。 地址:http://bbs.home.chshcms.com/index.php/show/index/17 2(和第一个差不多呢) 创建一个链接 当然不能让恶意地址暴露,修改成“诱人”的地址。 地址:http://bbs.home.chshcms.com/index.php/show/index/17...
程氏CMS v3.5 app/controllers/dance.php SQL注入漏洞
0x01 漏洞详情 漏洞页面 app/controllers/dance.php public function so $data='';$datacontent=''; $fid = $this-security-xssclean$this-uri-segment3; //方式 $key = $this-security-xssclean$this-input-getpost'key', TRUE; //关键字 $page = intval$this-input-get'p', TRUE; //页数 if$page==0 $page=1;...
程氏舞曲CMS#官网某漏洞致服务器沦陷
简要描述: 0.0 详细说明: 程氏舞曲CMS http://www.chshcms.com/ ok 部署用的:WDCP 这玩意的漏洞你没有补 不多说 上图 ok 就这样 升级下吧 漏洞证明: 如上...
程氏舞曲CMS最新版某处SQL注射漏洞(官方演示站)
简要描述: 今天刚看到这个网站,于是就射了一吧! 详细说明: 在歌曲搜索的地方,敲了一个单引号,于是就出现了如下的错误,其中单引号要转码为%27 http://demo.chshcms.com/index.php/dance/so/key/%27 然后构造了一下http://demo.chshcms.com/index.php/dance/so/key/wooyun' or '%'=' 转码后为http://demo.chshcms.com/index.php/dance/so/key/wooyun%27%20or%20%27%25%27%3D%27 所有的歌曲都查询出来了!...