3 matches found
XSS vulnerability in Hsycms frontend (CNVD-2021-26061)
Hsycms is a rapid site building system developed by TP5.0 framework. Hsycms has an XSS vulnerability in the frontend. An attacker can exploit the vulnerability to obtain an administrator cookie...
SQL Injection Vulnerability in Hsycms Frontend
Hsycms is an enterprise-level web content management system, written by PHP+MYSQL, using template separation technology to support the creation of many types of sites. Hsycms suffers from a SQL injection vulnerability in the frontend. An attacker can exploit the vulnerability to obtain sensitive...
Stored Cross-site Scripting Vulnerability in Hsycms Frontend Messages
Hsycms is an enterprise-level web content management system, written by PHP+MYSQL, using template separation technology to support the creation of many types of sites. A stored cross-site scripting vulnerability exists in the Hsycms frontend message. An attacker can insert malicious js code into...