Lucene search
K

37 matches found

NVD
NVD
added yesterday6 views

CVE-2026-15516

A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a...

6.3CVSS0.00274EPSS
Exploits0References6
EUVD
EUVD
added yesterday5 views

EUVD-2026-43258

A vulnerability was detected in MacCMS Pro up to 2022.1000.3005. Impacted is the function step5 of the file application/install/controller/Index.php of the component Installation Module. The manipulation results in authorization bypass. The attack may be launched remotely. The attack requires a...

6.3CVSS5.8AI score0.00274EPSS
Exploits0References6
CVE
CVE
added yesterday12 views

CVE-2026-15516

Technical details are not publicly available in the provided documents. Monitor for updates on CVE-2026-15516 for affected versions, impact, and remediation.

6.3CVSS5.8AI score0.00274EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.10 views

baserCMS 操作系统命令注入漏洞

BaserCMS is a corporate-level content management system CMS developed by the BaserCMS team. Versions of BaserCMS prior to 5.2.3 had a vulnerability related to operating system command injection. This vulnerability originated from the core module of the installation process. Attackers could...

9.8CVSS7.5AI score0.02059EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/02/03 3:11 a.m.11 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

6.1CVSS5.5AI score0.00254EPSS
Exploits1References1
OSV
OSV
added 2026/02/03 12:30 a.m.2 views

GHSA-9JJM-MC56-3QXV Subrion CMS vulnerable to cross-site scripting

Multiple reflected Cross-site Scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allow attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

6.1CVSS5.8AI score0.00254EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/02/03 12:30 a.m.9 views

Subrion CMS vulnerable to cross-site scripting

Multiple reflected Cross-site Scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allow attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

6.1CVSS5.8AI score0.00254EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/02/02 12:0 a.m.24 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

0.00254EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/02/02 12:0 a.m.3 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

5.5AI score0.00254EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/02 12:0 a.m.4 views

CVE-2025-70958

Multiple reflected cross-site scripting XSS vulnerabilities in the installation module of Subrion CMS v4.2.1 allows attackers to execute arbitrary Javascript in the context of the user's browser via injecting a crafted payload into the dbuser, dbpwd, and dbname parameters...

5.5AI score0.00254EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.11 views

PT-2026-5704

Name of the Vulnerable Software and Affected Versions Subrion CMS version 4.2.1 Description The installation module of Subrion CMS contains reflected cross-site scripting XSS flaws. These flaws allow attackers to execute arbitrary Javascript in the context of a user's browser. Exploitation occurs...

6.1CVSS5.4AI score0.00254EPSS
Exploits1References8
CVE
CVE
added 2026/02/02 12:0 a.m.17 views

CVE-2025-70958

Subrion CMS v4.2.1 installation module is affected by multiple reflected XSS vulnerabilities. The issue allows an attacker to execute arbitrary JavaScript in the context of a user’s browser by injecting a crafted payload into the dbuser, dbpwd, or dbname parameters during installation. The CVE de...

6.1CVSS5.5AI score0.00254EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-43127

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.00402EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-52277

Malicious code in bioql PyPI...

6.2CVSS6.6AI score0.00115EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:53 a.m.7 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS6.9AI score0.00115EPSS
Exploits0References1
NVD
NVD
added 2024/12/12 12:15 p.m.7 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS0.00115EPSS
Exploits0References1
OSV
OSV
added 2024/12/12 12:15 p.m.2 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/12 11:38 a.m.12 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS6.9AI score0.00115EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/12 11:38 a.m.26 views

CVE-2024-54101

Denial of service DoS vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability...

6.2CVSS0.00115EPSS
Exploits0References1
CVE
CVE
added 2024/12/12 11:38 a.m.64 views

CVE-2024-54101

CVE-2024-54101 is described across multiple sources as a denial-of-service vulnerability in the installation module that can affect availability. Public records list Huawei HarmonyOS and EMUI as the affected ecosystem, with a local attack vector and low attack complexity (NVD metrics: AV:L, AC:L,...

6.2CVSS6.9AI score0.00115EPSS
Exploits0References1Affected Software2
Rows per page
Query Builder