CrafterCMS 安全漏洞

CrafterCMS is a Java-based CMS from CrafterCMS, Inc. A security vulnerability exists in CrafterCMS versions 4.0.0 through 4.2.2 that stems from a Groovy sandbox bypass resulting in OS commands that can be executed by certified developers...

UJCMS 代码注入漏洞

UJCMS is a Java open source content management system from dromara open source. A code injection vulnerability exists in UJCMS version 9.7.5, which originates from cross-site scripting of the uploadZip/upload function in the File Upload component and could lead to a remote attack...

UJCMS 安全漏洞

UJCMS is a Java open source content management system from dromara open source. A security vulnerability exists in UJCMS version 9.6.3, which stems from insufficient cleanup of embedded attributes in uploaded SVG files, and a stored Cross-Site Scripting XSS vulnerability that could allow an...

JEECMS Resource Module Exploits Arbitrary File Upload Vulnerability

JEECMS is the domestic Java version of the open source web content management system java cms, jsp cms for short. JEECMS product background a function exists in an arbitrary file upload vulnerability. Allow attackers to take advantage of the vulnerability to upload arbitrary files...

国内优秀的JAVA(JSP)内容网站管理系统.FCK上传漏洞

简要描述： 国内优秀的JAVAJSP内容网站管理系统.FCK上传漏洞 详细说明： 漏洞地址: www.域名/thirdparty/fckeditor/editor/filemanager/browser/default/browser.html?Type=Image&Connector=connectors/jsp/connector.jsp 漏洞证明： 使用JEECMS系统的网站FCK漏洞地址： 1、中国物流信息中心：http://www.clic.org.cn/...

JCMS 2 0 1 0 file download vulnerability-vulnerability warning-the black bar safety net

JCMS is developed using java content management system, JCMS 2 0 1 0 version there is a file download vulnerability that could lead to an attacker exploit the vulnerability to download arbitrary files. +info: Title: JCMS 2 0 1 0 File Download Vulnerability Date: 2010-11-22 Author: Beach Team:...