2 matches found
EUVD-2026-33875
A security vulnerability has been detected in 1Panel-dev CordysCRM up to 1.4.1. This impacts the function Save of the file src/main/java/cn/cordys/crm/system/service/ModuleFormService.java of the component ModuleFormController. The manipulation of the argument Description leads to cross site...
dayrui FineCms 'call_msg' Function Cross-Site Scripting Vulnerability
dayrui FineCms is China Tianrui dayrui program design team released a set of content management system CMS using MVC architecture and PDO database interface development. A cross-site scripting vulnerability exists in the 'callmsg' function in the controllers/Form.php file in version 5.0.11 of...