EUVD-2024-16392

Malicious code in bioql PyPI...

EUVD-2021-9986

Malicious code in bioql PyPI...

CVE-2024-0599

A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file src\main\java\com\jspxcms\core\web\back\InfoController.java of the component Document Management Page. The manipulation of the argument title...

CVE-2025-4006 youyiio BeyongCms Document Management Page Upload.html unrestricted upload

A vulnerability classified as critical has been found in youyiio BeyongCms 1.6.0. Affected is an unknown function of the file /admin/theme/Upload.html of the component Document Management Page. The manipulation of the argument File leads to unrestricted upload. It is possible to launch the attack...

CVE-2025-4006 youyiio BeyongCms Document Management Page Upload.html unrestricted upload

A vulnerability classified as critical has been found in youyiio BeyongCms 1.6.0. Affected is an unknown function of the file /admin/theme/Upload.html of the component Document Management Page. The manipulation of the argument File leads to unrestricted upload. It is possible to launch the attack...

CVE-2025-4006

CVE-2025-4006 affects youyiio BeyongCms 1.6.0. The vulnerability is in the File parameter of the /admin/theme/Upload.html of the Document Management Page, where manipulation leads to unrestricted file uploads. The issue is exploitable remotely and exploits have been disclosed publicly. Multiple s...

PT-2025-18048 · Yoyiio · Beyongcms

Name of the Vulnerable Software and Affected Versions: youyiio BeyongCms version 1.6.0 Description: A critical vulnerability has been found in youyiio BeyongCms. The issue affects an unknown function of the file /admin/theme/Upload.html of the component Document Management Page. The manipulation ...

CVE-2024-0599

A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file src\main\java\com\jspxcms\core\web\back\InfoController.java of the component Document Management Page. The manipulation of the argument title...

Cross site scripting

A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file src\main\java\com\jspxcms\core\web\back\InfoController.java of the component Document Management Page. The manipulation of the argument title...

CVE-2024-0599 Jspxcms Document Management Page InfoController.java cross site scripting

A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file src\main\java\com\jspxcms\core\web\back\InfoController.java of the component Document Management Page. The manipulation of the argument title...

CVE-2024-0599

CVE-2024-0599 affects Jspxcms 10.2.0 in the Document Management Page, specifically the InfoController.java component. The vulnerability is a cross-site scripting (XSS) flaw caused by unsafely handling the title argument, enabling remote exploitation. Public exploit availability is indicated in th...

Jspxcms Cross-Site Scripting Vulnerability

BlueIntelligence Jspxcms is a scalable enterprise-level open source web content management system CMS from China's BlueIntelligence Technology Company. A cross-site scripting vulnerability exists in Jspxcms version 10.2.0, which stems from a cross-site scripting XSS vulnerability in the component...

CVE-2021-22851 HGiga OAKloud Portal - SQL injection -1

HGiga EIP product contains SQL Injection vulnerability. Attackers can inject SQL commands into specific URL parameter document management page to obtain database schema and data...