EUVD-2018-2110

Malware in sbrugna...

EUVD-2025-31082

Malicious code in bioql PyPI...

CVE-2025-10943

A security flaw has been discovered in MikeCen WeChat-Face-Recognition up to 6e3f72bf8547d80b59e330f1137e4aa505f492c1. This vulnerability affects the function valid of the file wx.php. The manipulation of the argument echostr results in cross site scripting. The attack can be launched remotely...

CVE-2025-10943

A security flaw has been discovered in MikeCen WeChat-Face-Recognition up to 6e3f72bf8547d80b59e330f1137e4aa505f492c1. This vulnerability affects the function valid of the file wx.php. The manipulation of the argument echostr results in cross site scripting. The attack can be launched remotely...

CVE-2025-10943 MikeCen WeChat-Face-Recognition wx.php valid cross site scripting

A security flaw has been discovered in MikeCen WeChat-Face-Recognition up to 6e3f72bf8547d80b59e330f1137e4aa505f492c1. This vulnerability affects the function valid of the file wx.php. The manipulation of the argument echostr results in cross site scripting. The attack can be launched remotely...

CVE-2025-10943 MikeCen WeChat-Face-Recognition wx.php valid cross site scripting

A security flaw has been discovered in MikeCen WeChat-Face-Recognition up to 6e3f72bf8547d80b59e330f1137e4aa505f492c1. This vulnerability affects the function valid of the file wx.php. The manipulation of the argument echostr results in cross site scripting. The attack can be launched remotely...

CVE-2025-10943

The CVE-2025-10943 entry concerns MikeCen WeChat-Face-Recognition, affecting the wx.php file’s valid function. The vulnerability arises from manipulating the echostr argument, enabling cross-site scripting. Exploitation is described as remote, with nothing indicating versioned releases or a publi...

WeChat-Face-Recognition 代码注入漏洞

WeChat-Face-Recognition is a WeChat admin platform face recognition program by Mike Cen, an individual developer. WeChat-Face-Recognition suffers from a code injection vulnerability that stems from a misuse of the parameter echostr in the file wx.php, which could lead to a cross-site scripting...

PT-2025-39364

Name of the Vulnerable Software and Affected Versions MikeCen WeChat-Face-Recognition affected versions not specified Description A security flaw exists in MikeCen WeChat-Face-Recognition. The issue involves cross site scripting resulting from manipulation of the echostr argument within the valid...

wx-discuz 代码注入漏洞

wx-discuz is descreekert individual developer of a microsoft public docking discuz forum software. Code injection vulnerability exists in wx-discuz 12bd4745c63ec203cb32119bf77ead4a923bf277 and previous versions, which stems from a cross-site scripting attack due to incorrect operation of the...

JIZHICMS Cross-Site Scripting Vulnerability (CNVD-2021-02998)

JIZHICMS Extreme CMS is an open source, free, commercial license-free website building system. A cross-site scripting vulnerability exists in Home/c/WechatController.php in JIZHICMS 1.7.1. An attacker can inject arbitrary Web script or HTML via index.php/Wechat/checkWeixin?signature=1&echostr=XSS...

YzmCMS WeChat Module Reflective Cross-Site Scripting Vulnerability

YzmCMS is a lightweight open source content management system based on PHP+Mysql architecture. A reflective cross-site scripting vulnerability exists in the YzmCMS WeChat module. Attackers can exploit this vulnerability through the admin/module/init.html echostr parameter to conduct cross-site...

CVE-2018-10026

The WeChat module in YzmCMS 3.7.1 has reflected XSS via the admin/module/init.html echostr parameter, related to the valid function in application/wechat/controller/index.class.php...