44 matches found
Command Execution Vulnerability in DHCMS (CNVD-2021-37325)
DHCMS is a content management system based on PHP and MySQL. DHCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...
Dhcms Information Disclosure Vulnerability
DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A security vulnerability exists in Dhcms 2017-09-18. The vulnerability stems from the fact that the program can disclose physical paths. No detailed vulnerability details are provided at this time...
Command Execution Vulnerability in DHCMS
DHCMS is a content management system based on PHP and MySQL. DHCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...
Dhcms cross-site scripting vulnerability (CNVD-2021-34491)
DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in Dhcms 2017-09-18. The vulnerability could allow a remote malicious user to execute arbitrary code...
SQL Injection Vulnerability in DHCMS (CNVD-2021-37332)
DHCMS is a content management system based on PHP and MySQL. DHCMS suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...
CVE-2020-19275
An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...
CVE-2020-19275
An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...
Information disclosure
An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...
CVE-2020-19274
A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...
CVE-2020-19274
A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...
Cross site scripting
A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...
CVE-2020-19275
An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...
CVE-2020-19275
The CVE-2020-19275 entry concerns dhcms 2017-09-18. Affected software: Dhcms (Dinghua Cloud CMS) using PHP/MySQL. Vulnerability: Information Disclosure via improper handling when users enter invalid characters after the normal interface, triggering an error that leaks the server’s physical path. ...
CVE-2020-19274
CVE-2020-19274 concerns a Cross-Site Scripting (XSS) vulnerability in Dhcms 2017-09-18, affecting the guestbook via the message board. The available connected documents identify Dhcms as the affected software and describe the vulnerability as allowing a remote attacker to execute arbitrary code t...
CVE-2020-19274
A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...
PT-2021-10319 · Dhcms · Dhcms
Name of the Vulnerable Software and Affected Versions: dhcms version 2017-09-18 Description: An Information Disclosure issue exists when entering invalid characters after the normal interface, causing an error that leaks the physical path. Recommendations: For dhcms version 2017-09-18, consider...
DhCms 跨站脚本漏洞
DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in Dhcms 2017-09-18. The vulnerability could allow a remote malicious user to execute arbitrary code...
Code execution vulnerability in dhcms
dhcms is an enterprise building system. A code execution vulnerability exists in dhcms, which can be exploited by an attacker to execute code...
SQL Injection Vulnerability in dhcms Frontend
dhcms is an enterprise building system. A SQL injection vulnerability exists in the frontend of dhcms, which can be exploited by attackers to obtain sensitive database information...
CVE-2019-9550
DhCms through 2017-09-18 has admin.php?r=admin/Index/index XSS...