27 matches found
EUVD-2019-17107
Malware in sbrugna...
EUVD-2019-18923
Malware in sbrugna...
CVE-2019-9551
An issue was discovered in DOYO aka doyocms 2.3 through 2015-05-06. It has admin.php XSS...
CVE-2020-19803
Cross Site Request Forgery vulnerability found in Milken DoyoCMS v.2.3 allows a remote attacker to execute arbitrary code via the background system settings...
DOYO SQL注入漏洞
DOYO doyocms is a PHP-based open source content management system CMS. A SQL injection vulnerability exists in admin.php of DOYO CMS 2.3, which can be exploited by an attacker to execute arbitrary SQL commands via the orders parameter...
Stored XSS Vulnerability in DOYO Administrator Interface
DOYO doyocms is a PHP-based open source content management system CMS. A cross-site scripting vulnerability exists in the admin.php backend in DOYO version 2.3 through 2015-05-06. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...
Cross site scripting
An issue was discovered in DOYO aka doyocms 2.3 through 2015-05-06. It has admin.php XSS...
CVE-2019-9551
An issue was discovered in DOYO aka doyocms 2.3 through 2015-05-06. It has admin.php XSS...
CVE-2019-9551
An issue was discovered in DOYO aka doyocms 2.3 through 2015-05-06. It has admin.php XSS...
CVE-2019-9551
DOYO (doyocms) 2.3 to 2015-05-06 contains a stored XSS in the admin.php backend. Affected component: admin.php; vulnerability type: cross-site scripting. Impact and exploit details are not elaborated beyond injection of arbitrary script/HTML. No patch/version remediation information is provided i...
CVE-2019-9551
An issue was discovered in DOYO aka doyocms 2.3 through 2015-05-06. It has admin.php XSS...
CVE-2019-7569
An issue was discovered in DOYO aka doyocms 2.320140425 update. There is a CSRF vulnerability that can add a super administrator account via admin.php?c=aadminuser&a=add&run=1...
Cross site request forgery (csrf)
An issue was discovered in DOYO aka doyocms 2.320140425 update. There is a CSRF vulnerability that can add a super administrator account via admin.php?c=aadminuser&a=add&run=1...
CVE-2019-7569
An issue was discovered in DOYO aka doyocms 2.320140425 update. There is a CSRF vulnerability that can add a super administrator account via admin.php?c=aadminuser&a=add&run=1...
CVE-2019-7569
An issue was discovered in DOYO aka doyocms 2.320140425 update. There is a CSRF vulnerability that can add a super administrator account via admin.php?c=aadminuser&a=add&run=1...
CVE-2019-7569
DOYO (doyocms) 2.3 (20140425 update) contains a CSRF vulnerability that can add a super administrator account via admin.php?c=a_adminuser&a=add&run=1. The affected component is the web admin interface; the issue enables privilege elevation by creating a new admin user. The connected documents con...
DOYO universal Station system 2. 3 /index.php the order of the SQL injection vulnerability
0x01 frame description DOYO universal Station system using PHP and MYSQL development,is a free open source CMS built Station, and enterprise built Station system,can be widely used for personal, corporate, government, Agency and many other website-building. Official homepage: http://wdoyo.com...
Doyo建站最新版本存在CSRF越权修改管理员密码(赠送后台getshell漏洞)
简要描述: Doyo建站最新版本存在CSRF越权修改管理员密码赠送后台getshell漏洞 详细说明: 我们在后台 看见修改资料,能够在不知道管理员密码的情况下直接修改 那么我们抓下包看看 None 用菜刀连接下...
Doyo建站最新版本存在CSRF添加管理员漏洞
简要描述: Doyo建站最新版本存在CSRF添加管理员漏洞 详细说明: 在后台添加管理员打开burp抓下包看看是怎么样的带入数据库的 None 漏洞证明:...
Doyo 2.3 /pay.php SQL注入漏洞
No description provided by source...