CVE-2022-37730

In ftcms 2.1, there is a Cross Site Request Forgery CSRF vulnerability in the PHP page, which causes the attacker to forge a link to trick him to click on a malicious link or visit a page containing attack code, and send a request to the server corresponding to the identity authentication...

EUVD-2025-7517

Malicious code in bioql PyPI...

EUVD-2022-40343

Malicious code in bioql PyPI...

EUVD-2022-35275

Malicious code in bioql PyPI...

EUVD-2022-40342

Malicious code in bioql PyPI...

EUVD-2022-35276

Malicious code in bioql PyPI...

EUVD-2022-35277

Malicious code in bioql PyPI...

EUVD-2022-35274

Malicious code in bioql PyPI...

EUVD-2025-7516

Malicious code in bioql PyPI...

CVE-2022-37731

ftcms 2.1 poster.PHP has a XSS vulnerability. The attacker inserts malicious JavaScript code into the web page, causing the user / administrator to trigger malicious code when accessing...

CVE-2022-30062

ftcms =2.1 was discovered to be vulnerable to Arbitrary File Read via tp.php...

CVE-2022-30060

ftcms =2.1 was discovered to be vulnerable to Arbitrary File Write via admin/controllers/tp.php...

CVE-2022-30061

ftcms =2.1 was discovered to be vulnerable to directory traversal attacks via the parameter tp...

CVE-2022-30063

ftcms =2.1 was discovered to be vulnerable to code execution attacks...

CVE-2025-2133

A vulnerability classified as problematic was found in ftcms 2.1. Affected by this vulnerability is an unknown functionality of the file /admin/index.php/news/edit. The manipulation of the argument title leads to cross site scripting. The attack can be launched remotely. The exploit has been...

CVE-2025-2132

A vulnerability classified as critical has been found in ftcms 2.1. Affected is an unknown function of the file /admin/index.php/web/ajaxalllists of the component Search. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

CVE-2025-2133

A vulnerability classified as problematic was found in ftcms 2.1. Affected by this vulnerability is an unknown functionality of the file /admin/index.php/news/edit. The manipulation of the argument title leads to cross site scripting. The attack can be launched remotely. The exploit has been...

ftcms 代码注入漏洞

ftcms is a content management system from ftcms Inc. A code injection vulnerability exists in version 2.1 of ftcms, which stems from an incorrect manipulation of the parameter title that could lead to a cross-site scripting attack...

CVE-2025-2133

CVE-2025-2133 affects ftcms 2.1. The vulnerability lies in the /admin/index.php/news/edit functionality, where improper handling of the title parameter enables cross‑site scripting. Attackers can exploit remotely; public disclosure exists. Other parameters may be affected. The sources do not prov...

CVE-2025-2133 ftcms edit cross site scripting

A vulnerability classified as problematic was found in ftcms 2.1. Affected by this vulnerability is an unknown functionality of the file /admin/index.php/news/edit. The manipulation of the argument title leads to cross site scripting. The attack can be launched remotely. The exploit has been...