Lucene search
K

44 matches found

CNVD
CNVD
added 2021/05/14 12:0 a.m.2 views

Command Execution Vulnerability in DHCMS (CNVD-2021-37325)

DHCMS is a content management system based on PHP and MySQL. DHCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/05/14 12:0 a.m.6 views

Dhcms Information Disclosure Vulnerability

DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A security vulnerability exists in Dhcms 2017-09-18. The vulnerability stems from the fact that the program can disclose physical paths. No detailed vulnerability details are provided at this time...

5.3CVSS6.7AI score0.01179EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/14 12:0 a.m.4 views

Command Execution Vulnerability in DHCMS

DHCMS is a content management system based on PHP and MySQL. DHCMS suffers from a command execution vulnerability that can be exploited by an attacker to gain control of the server...

7.6AI score
Exploits0
CNVD
CNVD
added 2021/05/14 12:0 a.m.4 views

Dhcms cross-site scripting vulnerability (CNVD-2021-34491)

DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in Dhcms 2017-09-18. The vulnerability could allow a remote malicious user to execute arbitrary code...

6.1CVSS6.8AI score0.00852EPSS
Exploits1References1
CNVD
CNVD
added 2021/05/14 12:0 a.m.3 views

SQL Injection Vulnerability in DHCMS (CNVD-2021-37332)

DHCMS is a content management system based on PHP and MySQL. DHCMS suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

7.8AI score
Exploits0
OSV
OSV
added 2021/05/12 6:15 p.m.3 views

CVE-2020-19275

An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...

5.3CVSS5.8AI score0.01179EPSS
Exploits1References2
NVD
NVD
added 2021/05/12 6:15 p.m.24 views

CVE-2020-19275

An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...

5.3CVSS0.01179EPSS
Exploits1References2
Prion
Prion
added 2021/05/12 6:15 p.m.10 views

Information disclosure

An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...

5CVSS5AI score0.01179EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2021/05/12 5:15 p.m.17 views

CVE-2020-19274

A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...

6.1CVSS0.00852EPSS
Exploits1References1
OSV
OSV
added 2021/05/12 5:15 p.m.3 views

CVE-2020-19274

A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...

6.1CVSS6AI score0.00852EPSS
Exploits1References1
Prion
Prion
added 2021/05/12 5:15 p.m.10 views

Cross site scripting

A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...

4.3CVSS6.2AI score0.00852EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/05/12 5:13 p.m.29 views

CVE-2020-19275

An Information Disclosure vulnerability exists in dhcms 2017-09-18 when entering invalid characters after the normal interface, which causes an error that will leak the physical path...

5AI score0.01179EPSS
Exploits1References2
CVE
CVE
added 2021/05/12 5:13 p.m.72 views

CVE-2020-19275

The CVE-2020-19275 entry concerns dhcms 2017-09-18. Affected software: Dhcms (Dinghua Cloud CMS) using PHP/MySQL. Vulnerability: Information Disclosure via improper handling when users enter invalid characters after the normal interface, triggering an error that leaks the server’s physical path. ...

5.3CVSS4.9AI score0.01179EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/05/12 4:26 p.m.58 views

CVE-2020-19274

CVE-2020-19274 concerns a Cross-Site Scripting (XSS) vulnerability in Dhcms 2017-09-18, affecting the guestbook via the message board. The available connected documents identify Dhcms as the affected software and describe the vulnerability as allowing a remote attacker to execute arbitrary code t...

6.1CVSS6.1AI score0.00852EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/05/12 4:26 p.m.24 views

CVE-2020-19274

A Cross SIte Scripting XSS vulnerability exists in Dhcms 2017-09-18 in guestbook via the message board, which could let a remote malicious user execute arbitrary code...

6.1AI score0.00852EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2021/05/12 12:0 a.m.6 views

PT-2021-10319 · Dhcms · Dhcms

Name of the Vulnerable Software and Affected Versions: dhcms version 2017-09-18 Description: An Information Disclosure issue exists when entering invalid characters after the normal interface, causing an error that leaks the physical path. Recommendations: For dhcms version 2017-09-18, consider...

5.3CVSS4.7AI score0.01179EPSS
Exploits1References4
CNNVD
CNNVD
added 2021/05/12 12:0 a.m.7 views

DhCms 跨站脚本漏洞

DhCms Dinghua Cloud CMS is a content management system based on PHP and MySQL. A cross-site scripting vulnerability exists in Dhcms 2017-09-18. The vulnerability could allow a remote malicious user to execute arbitrary code...

6.1CVSS5.7AI score0.00852EPSS
Exploits1References1
CNVD
CNVD
added 2019/04/23 12:0 a.m.2 views

Code execution vulnerability in dhcms

dhcms is an enterprise building system. A code execution vulnerability exists in dhcms, which can be exploited by an attacker to execute code...

7.8AI score
Exploits0
CNVD
CNVD
added 2019/04/23 12:0 a.m.2 views

SQL Injection Vulnerability in dhcms Frontend

dhcms is an enterprise building system. A SQL injection vulnerability exists in the frontend of dhcms, which can be exploited by attackers to obtain sensitive database information...

7.9AI score
Exploits0
OSV
OSV
added 2019/03/03 7:29 p.m.6 views

CVE-2019-9550

DhCms through 2017-09-18 has admin.php?r=admin/Index/index XSS...

4.8CVSS5.8AI score0.0064EPSS
Exploits1References1
Rows per page
Query Builder