EUVD-2018-10656

Malware in sbrugna...

EUVD-2018-13082

Malware in sbrugna...

CVE-2020-21729

JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...

JEECMS Cross-Site Scripting Vulnerability (CNVD-2021-88950)

Jeecms is China's Jinlei Technology Development Jeecms company's set of content management system CMS developed using the Java language. A cross-site scripting vulnerability exists in JEECMS, which originates from the product's /member-vipcenter.htm page that does not validate user input data. An...

CVE-2018-18952

JEECMS 9.3 has XSS via an index.do/content/update?type=update URI...

jeecms version 9.2 has xml external entity injection vulnerability

JEECMS is Jiangxi Jinlei Technology Development Co., Ltd. developed a support for WeChat small program, WeChat public number / service number, column model, content model cross-customization, as well as with the payment and financial settlement of the content of the e-commerce as one of the conte...

第三方JEECMS存在远程命令执行漏洞导致批量政府站受影响（附影响站点打包）

简要描述： Jeecms是基于java技术研发的站群管理系统，稳定、安全、高效、跨平台、无限扩展是jeecms 的优点，系统支持mysql、oracle、sqlserver、db2等主流数据库。 搜索引擎的都被我爬了，一网打尽，所以不要在提交了，嘿嘿。。。 详细说明： 很可惜，存在远程命令执行漏洞，Struts2... 漏洞证明： http://www.whrsks.gov.cn/jeecms/RegisterInput.jspx = whrsksb001\admintomcat http://www.jnh.gov.cn/jncms/RegisterInput.jspx = NULL...