6 matches found
CVE-2024-23031
Cross Site Scripting XSS vulnerability in iswater parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL...
CVE-2024-22927
Cross Site Scripting XSS vulnerability in the func parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL...
CVE-2024-23034
Cross Site Scripting vulnerability in the input parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL...
CVE-2024-23032
Cross Site Scripting vulnerability in num parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL...
CVE-2024-22927
Cross Site Scripting XSS vulnerability in the func parameter in eyoucms v.1.6.5 allows a remote attacker to run arbitrary code via crafted URL...
PT-2024-19617
Name of the Vulnerable Software and Affected Versions eyoucms version 1.6.5 Description A Cross Site Scripting XSS issue exists in the func parameter, allowing a remote attacker to execute arbitrary code via a crafted URL. Recommendations For eyoucms version 1.6.5, consider restricting access to...