14 matches found
CVE-2018-18952
JEECMS 9.3 has XSS via an index.do/content/update?type=update URI...
EUVD-2018-11233
Malware in sbrugna...
EUVD-2018-11234
Malware in sbrugna...
CVE-2018-19545
JEECMS 9.3 has CSRF via the api/admin/role/save URI to add a user...
CVE-2018-19545
JEECMS 9.3 has CSRF via the api/admin/role/save URI to add a user...
CVE-2018-19544
JEECMS 9.3 has CSRF via the api/admin/content/save URI to add news...
Cross site request forgery (csrf)
JEECMS 9.3 has CSRF via the api/admin/content/save URI to add news...
Cross site request forgery (csrf)
JEECMS 9.3 has CSRF via the api/admin/role/save URI to add a user...
CVE-2018-19544
JEECMS 9.3 has CSRF via the api/admin/content/save URI to add news...
CVE-2018-19545
JEECMS 9.3 contains a CSRF vulnerability in the admin endpoint api/admin/role/save that can be abused to add a new user. Root cause is CSRF on the user-creation pathway; impact is user creation with high severity (CVSS3 base score 8.8) as cited in the CVE record. Exploitation details or fix are n...
CVE-2018-19545
JEECMS 9.3 has CSRF via the api/admin/role/save URI to add a user...
CVE-2018-18952
JEECMS 9.3 has XSS via an index.do/content/update?type=update URI...
Design/Logic Flaw
JEECMS 9.3 has XSS via an index.do/content/update?type=update URI...
CVE-2018-18952
JEECMS 9.3 has XSS via an index.do/content/update?type=update URI...