9 matches found
EUVD-2018-10656
Malware in sbrugna...
EUVD-2018-13082
Malware in sbrugna...
CVE-2020-21729
JEECMS x1.1 contains a stored cross-site scripting XSS vulnerability in the component of /member-vipcenter.htm, which allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
JEECMS Cross-Site Scripting Vulnerability (CNVD-2021-88950)
Jeecms is China's Jinlei Technology Development Jeecms company's set of content management system CMS developed using the Java language. A cross-site scripting vulnerability exists in JEECMS, which originates from the product's /member-vipcenter.htm page that does not validate user input data. An...
XSS vulnerability in jeecms
jeecms is Jiangxi Jinlei Technology Development Co., Ltd. developed a support for WeChat small program, WeChat public number / service number, column model, content model cross-customization, as well as with payment and financial settlement of the content of the e-commerce as one of the content...
CVE-2018-18952
JEECMS 9.3 has XSS via an index.do/content/update?type=update URI...
jeecms version 9.2 has xml external entity injection vulnerability
JEECMS is Jiangxi Jinlei Technology Development Co., Ltd. developed a support for WeChat small program, WeChat public number / service number, column model, content model cross-customization, as well as with the payment and financial settlement of the content of the e-commerce as one of the conte...
Multiple vulnerabilities in jeecms latest version v8.1 front and backend
JEECMS is the domestic Java version of the open source web content management system java cms, jsp cms for short. JEECMS latest version v8 there are XSS and CSRF vulnerabilities , attackers can exploit the vulnerability by sending a private message to the administrator or the submission of...
第三方JEECMS存在远程命令执行漏洞导致批量政府站受影响(附影响站点打包)
简要描述: Jeecms是基于java技术研发的站群管理系统,稳定、安全、高效、跨平台、无限扩展是jeecms 的优点,系统支持mysql、oracle、sqlserver、db2等主流数据库。 搜索引擎的都被我爬了,一网打尽,所以不要在提交了,嘿嘿。。。 详细说明: 很可惜,存在远程命令执行漏洞,Struts2... 漏洞证明: http://www.whrsks.gov.cn/jeecms/RegisterInput.jspx = whrsksb001\admintomcat http://www.jnh.gov.cn/jncms/RegisterInput.jspx = NULL...