Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-3524

Malware in sbrugna...

8.8CVSS8.8AI score0.0065EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-10058

Malicious code in bioql PyPI...

4.8CVSS4AI score0.00323EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:30 a.m.8 views

CVE-2023-51254

Cross Site Scripting vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component...

6.1CVSS7.2AI score0.00552EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 6:39 a.m.8 views

CVE-2018-11493

An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add a friendship link via index.php?m=link=index=add...

8.8CVSS7AI score0.0065EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/10 4:15 a.m.15 views

CVE-2025-3386

A vulnerability was found in LinZhaoguan pb-cms 2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /adminlinks of the component Friendship Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The...

4.8CVSS6.2AI score0.00323EPSS
Exploits1References1
OSV
OSV
added 2025/04/07 10:15 p.m.4 views

CVE-2025-3386

A vulnerability was found in LinZhaoguan pb-cms 2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /adminlinks of the component Friendship Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The...

4.8CVSS3.7AI score0.00323EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/04/07 10:0 p.m.15 views

CVE-2025-3386 LinZhaoguan pb-cms Friendship Link admin#links cross site scripting

A vulnerability was found in LinZhaoguan pb-cms 2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /adminlinks of the component Friendship Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The...

4.8CVSS0.00323EPSS
Exploits1References3
CVE
CVE
added 2025/04/07 10:0 p.m.55 views

CVE-2025-3386

CVE-2025-3386 affects LinZhaoguan pb-cms 2.0, specifically the Friendship Link Handler’s /admin#links function. The vulnerability is a cross-site scripting issue described as potentially exploitable remotely, with the exploit disclosed publicly. Multiple sources corroborate the issue, including R...

4.8CVSS6.4AI score0.00323EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/07 10:0 p.m.6 views

CVE-2025-3386 LinZhaoguan pb-cms Friendship Link admin#links cross site scripting

A vulnerability was found in LinZhaoguan pb-cms 2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /adminlinks of the component Friendship Link Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The...

4.8CVSS6.4AI score0.00323EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/04/07 12:0 a.m.4 views

pb-cms 代码注入漏洞

pb-cms waterfall content management system is a content management system developed by LinZhaoguan. A code injection vulnerability exists in pb-cms version 2.0, which is caused by cross-site scripting in Friendship Link Handler...

4.8CVSS4.3AI score0.00323EPSS
Exploits1References3
Veracode
Veracode
added 2024/05/03 7:6 a.m.17 views

Cross Site Scripting (XSS)

Jfinalcms is vulnerable to Cross Site Scripting XSS. The vulnerability is due to improper input validation in the friendship link component, allowing a remote attacker to execute arbitrary code through a crafted script...

6.1CVSS7.9AI score0.00552EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/04/29 6:15 p.m.18 views

CVE-2023-51254

Cross Site Scripting vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component...

6.1CVSS6.9AI score0.00552EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2024/04/29 6:15 p.m.2 views

CVE-2023-51254

Cross Site Scripting vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component...

6.1CVSS6.2AI score0.00552EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.6 views

PT-2024-14079 · Jfinalcms · Jfinalcms

Name of the Vulnerable Software and Affected Versions: Jfinalcms version 5.0.0 Description: A Cross Site Scripting issue allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component. This enables the attacker to perform unauthorized actions on the...

6.1CVSS6.5AI score0.00552EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2024/04/29 12:0 a.m.13 views

CVE-2023-51254

Cross Site Scripting vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component...

7.2AI score0.00552EPSS
Exploits1References1
OSV
OSV
added 2024/04/29 12:0 a.m.10 views

CVE-2023-51254

Cross Site Scripting vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component...

6.1CVSS7.1AI score0.00552EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/04/29 12:0 a.m.21 views

CVE-2023-51254

Cross Site Scripting vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component...

7.1AI score0.00552EPSS
Exploits1References1
OSV
OSV
added 2018/05/26 6:29 p.m.13 views

CVE-2018-11493

An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add a friendship link via index.php?m=link&f=index&v=add...

8.8CVSS8.9AI score
Exploits0References1
CVE
CVE
added 2018/05/26 6:0 p.m.44 views

CVE-2018-11493

WUZHI CMS 4.1.0 is affected by a Cross-Site Request Forgery (CSRF) vulnerability that can add a friendship link via index.php?m=link&f=index&v=add. The issue is documented under CVE-2018-11493. Connected sources confirm the affected software/version and the specific vulnerable endpoint. The exist...

8.8CVSS8.6AI score0.0065EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2018/05/26 12:0 a.m.5 views

PT-2018-10610 · Wuzhi · Wuzhi Cms

Name of the Vulnerable Software and Affected Versions: WUZHI CMS version 4.1.0 Description: A CSRF issue allows adding a friendship link via "index.php?m=link&f=index&v=add". Recommendations: For WUZHI CMS version 4.1.0, update to a version that includes a fix for this issue, if available. At the...

8.8CVSS8.6AI score0.0065EPSS
Exploits1References4
Rows per page
Query Builder