Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-11172

Malware in sbrugna...

6.1CVSS6.3AI score0.00621EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:28 p.m.7 views

CVE-2020-19266

A stored cross-site scripting XSS vulnerability in the index.php/Dswjcms/Site/articleList component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML...

6.1CVSS5.8AI score0.00621EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:51 p.m.7 views

CVE-2020-19267

An issue in index.php/Dswjcms/Basis/resources of Dswjcms 1.6.4 allows attackers to execute arbitrary code via uploading a crafted PHP file...

9.8CVSS7.9AI score0.01552EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:17 p.m.8 views

CVE-2020-19265

A stored cross-site scripting XSS vulnerability in the index.php/Dswjcms/Basis/links component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML...

6.1CVSS5.8AI score0.00621EPSS
Exploits1
OSV
OSV
added 2021/09/09 6:15 p.m.3 views

CVE-2020-19266

A stored cross-site scripting XSS vulnerability in the index.php/Dswjcms/Site/articleList component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML...

6.1CVSS5.9AI score0.00621EPSS
Exploits1References1
Prion
Prion
added 2021/09/09 6:15 p.m.17 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the index.php/Dswjcms/Basis/links component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML...

4.3CVSS6AI score0.00621EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2021/09/09 6:15 p.m.15 views

Cross site request forgery (csrf)

A cross-site request forgery CSRF in index.php/Dswjcms/User/tfAdd of Dswjcms 1.6.4 allows authenticated attackers to arbitrarily add administrator users...

3.5CVSS5.6AI score0.00296EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/09/09 5:44 p.m.41 views

CVE-2020-19268

CVE-2020-19268: CSRF in Dswjcms 1.6.4 (endpoint index.php/Dswjcms/User/tfAdd) allows authenticated attackers to arbitrarily add administrator users. Root cause: insufficient parameter validation/CSRF protection on tfAdd. Impact: unauthorized privilege escalation to admin. Exploitation details are...

5.7CVSS5.5AI score0.00296EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/09/09 5:44 p.m.20 views

CVE-2020-19266

A stored cross-site scripting XSS vulnerability in the index.php/Dswjcms/Site/articleList component of Dswjcms 1.6.4 allows attackers to execute arbitrary web scripts or HTML...

6AI score0.00621EPSS
Exploits1References1
CVE
CVE
added 2021/09/09 5:44 p.m.49 views

CVE-2020-19265

The provided documents confirm a stored cross-site scripting (XSS) vulnerability in Dswjcms 1.6.4, specifically in the index.php/Dswjcms/Basis/links component. The root cause is lack of proper validation/escaping of input parameters in that component, enabling attackers to store and execute arbit...

6.1CVSS5.9AI score0.00621EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder