EUVD-2017-5589

Malware in sbrugna...

YUNUCMS cross-site scripting vulnerability (CNVD-2018-23273)

YUNUCMS is a three-network, self-substation system of open source content management system. YUNUCMS 1.1.5 in admin/link/editlink?id=5 cross-site scripting vulnerability, attackers can exploit the vulnerability to carry out cross-site attacks...

CVE-2018-18721

CVE-2018-18721 is an XSS vulnerability in YUNUCMS 1.1.5, specifically in the admin/link/editlink?id=5. The NVD entry notes an XSS issue with a base CVSSv3 score of 4.8 (NETWORK attack, LOW integrity/LOW confidentiality impact) and a CVSSv2 score of 3.5 (L?). The connected records consistently des...

Sql injection

SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action...

CVE-2017-14076

SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action...

CVE-2017-14076

SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the id parameter to linksmanage.php in an editlink action...

CVE-2009-4786

Multiple cross-site scripting XSS vulnerabilities in Pligg before 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the HTTP Referer header to 1 admin/adminconfig.php, 2 admin/adminmodules.php, 3 delete.php, 4 editlink.php, 5 submit.php, 6 submitgroups.php, 7...

[Full-disclosure] Pligg 9.9.0 editlink.php SQL Injection Vulnerability

Hello, the Pligg http://www.pligg.com/ content management system is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query:...