95 matches found
CVE-2018-18952
JEECMS 9.3 has XSS via an index.do/content/update?type=update URI...
EUVD-2018-11234
Malware in sbrugna...
EUVD-2018-11233
Malware in sbrugna...
EUVD-2020-14497
Malware in sbrugna...
EUVD-2018-10656
Malware in sbrugna...
EUVD-2018-13082
Malware in sbrugna...
EUVD-2020-13579
Malware in sbrugna...
CVE-2020-20799
JeeCMS 1.0.1 contains a stored cross-site scripting XSS vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the commentText parameter...
CVE-2020-21729
JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2018-20528
JEECMS 9 has SSRF via the ueditor/getRemoteImage.jspx upfile parameter...
JEECMS Cross-Site Scripting Vulnerability (CNVD-2021-88950)
Jeecms is China's Jinlei Technology Development Jeecms company's set of content management system CMS developed using the Java language. A cross-site scripting vulnerability exists in JEECMS, which originates from the product's /member-vipcenter.htm page that does not validate user input data. An...
CVE-2020-21729
JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2020-21729
JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
Cross site scripting
JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2020-21729
JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2020-21729
CVE-2020-21729 affects JEECMS (x1.1). The vulnerability is a stored XSS in the /member-vipcenter.htm component, allowing an attacker to inject and execute arbitrary web scripts or HTML via a crafted payload. The issue stems from unvalidated input on that page. Documented impact is client-side cod...
Jeecms 跨站脚本漏洞
Jeecms is China's Jinlei Technology Development Jeecms company's set of content management system CMS developed using the Java language. A cross-site scripting vulnerability exists in JEECMS, which originates from the product's /member-vipcenter.htm page that does not validate user input data. An...
CVE-2020-20799
JeeCMS 1.0.1 contains a stored cross-site scripting XSS vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the commentText parameter...
CVE-2020-20799
JeeCMS 1.0.1 contains a stored cross-site scripting XSS vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the commentText parameter...
Cross site scripting
JeeCMS 1.0.1 contains a stored cross-site scripting XSS vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the commentText parameter...