CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function for 'menudescription' variable in dbhcms\mod\mod.menus.edit.php line 83 and in dbhcms\mod\mod.menus.view.php line 111, A remote authenticated with admin user can exploit this vulnerability to hijack other users...

4.8CVSS6.5AI score0.00252EPSS

Exploits1

RedhatCVE•added 2025/05/22 4:28 p.m.•1 views

CVE-2020-19884

DBHcms v1.2.0 has a stored xss vulnerability as there is no htmlspecialchars function in dbhcms\mod\mod.domain.edit.php line 119...

4.8CVSS6.7AI score0.00321EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:54 p.m.•3 views

CVE-2020-19886

DBHcms v1.2.0 has no CSRF protection mechanism,as demonstrated by CSRF for an /index.php?dbhcmspid=-80=9 can delete any menu...

8.1CVSS7.1AI score0.00111EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:49 p.m.•3 views

CVE-2020-19890

DBHcms v1.2.0 has an Arbitrary file read vulnerability in dbhcms\mod\mod.editor.php $GET'file' is filename,and as there is no filter function for security, you can read any file's content...

4.9CVSS6.9AI score0.00271EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by