CVE-2019-7569

An issue was discovered in DOYO aka doyocms 2.320140425 update. There is a CSRF vulnerability that can add a super administrator account via admin.php?c=aadminuser&a=add&run=1...

Doyo 2.3 /pay.php SQL注入漏洞

No description provided by source...

DOYO 2.3 /message.php SQL注入漏洞

Doyo 2.3...

doyo 2.3 /template.php 本地文件包含漏洞

DOYO在template传参时，由于Template.php对传入文件路径的处理不当，逻辑错误，导致可包含任意文件（含相对路径）。 doyo 2.3...