127 matches found
CVE-2025-15187
GreenCMS up to version 2.3 is affected by a path traversal in the File Handler’s DataController.class.php, where manipulating sqlFiles/zipFiles enables traversal. The issue is remote and publicly exploitable; affected products are no longer supported by the maintainer. No remediation or fixed ver...
PT-2025-53714
Name of the Vulnerable Software and Affected Versions GreenCMS versions prior to 2.3 Description A flaw exists in GreenCMS up to version 2.3 within the File Handler component, specifically in the /DataController.class.php file. Manipulation of the sqlFiles/zipFiles argument can lead to path...
GreenCMS 路径遍历漏洞
GreenCMS is GreenCMS open source a content management system CMS based on ThinkPHP development. A path traversal vulnerability exists in GreenCMS 2.3 and earlier versions, which stems from incorrect manipulation of the parameter sqlFiles/zipFiles in the file/DataController.class.php of the...
CVE-2025-14244
A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class.php of the component Menu Management Page. This manipulation of the argument Link causes cross site scripting. The attack may be initiated remotely...
CVE-2025-14244
A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class.php of the component Menu Management Page. This manipulation of the argument Link causes cross site scripting. The attack may be initiated remotely...
CVE-2025-14244 GreenCMS Menu Management CustomController.class.php cross site scripting
A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class.php of the component Menu Management Page. This manipulation of the argument Link causes cross site scripting. The attack may be initiated remotely...
CVE-2025-14244 GreenCMS Menu Management CustomController.class.php cross site scripting
A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class.php of the component Menu Management Page. This manipulation of the argument Link causes cross site scripting. The attack may be initiated remotely...
CVE-2025-14244 GreenCMS Menu Management CustomController.class.php cross site scripting
A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class.php of the component Menu Management Page. This manipulation of the argument Link causes cross site scripting. The attack may be initiated remotely...
PT-2025-49548
A flaw has been found in GreenCMS 2.3.0603. Affected by this issue is some unknown functionality of the file /Admin/Controller/CustomController.class.php of the component Menu Management Page. This manipulation of the argument Link causes cross site scripting. The attack may be initiated remotely...
GreenCMS 代码注入漏洞
GreenCMS is GreenCMS open source a set of ThinkPHP-based development of content management system CMS. A code injection vulnerability exists in GreenCMS version 2.3.0603, which stems from the incorrect manipulation of the parameter Link in the file /Admin/Controller/CustomController.class.php,...
EUVD-2018-11069
Malware in sbrugna...
EUVD-2018-4939
Malware in sbrugna...
EUVD-2018-3690
Malware in sbrugna...
EUVD-2018-3691
Malware in sbrugna...
EUVD-2020-14138
Malware in sbrugna...
EUVD-2018-11027
Malware in sbrugna...
EUVD-2024-20105
Malicious code in bioql PyPI...
EUVD-2022-33353
Malicious code in bioql PyPI...
EUVD-2025-25745
Malicious code in bioql PyPI...
CVE-2025-9415
A vulnerability was identified in GreenCMS up to 2.3.0603. This affects an unknown part of the file /index.php?m=admin=media=fileconnect. The manipulation of the argument upload leads to unrestricted upload. The attack is possible to be carried out remotely. The exploit is publicly available and...