6 matches found
CVE-2022-45541
EyouCMS = 1.6.0 was discovered a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char...
CVE-2022-45542
EyouCMS = 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file...
Design/Logic Flaw
EyouCMS = 1.6.0 was discovered a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char...
CVE-2022-45538
EyouCMS = 1.6.0 was discovered a reflected-XSS in the article publish component in cookie "ENVGOBACKURL"...
CVE-2022-45542
EyouCMS = 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file...
CVE-2022-45539
EyouCMS = 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file...