15 matches found
EUVD-2018-8360
Malware in sbrugna...
EUVD-2018-13147
Malware in sbrugna...
EUVD-2024-16511
Malicious code in bioql PyPI...
EUVD-2024-16967
Malicious code in bioql PyPI...
EUVD-2024-17017
Malicious code in bioql PyPI...
CVE-2024-1200
A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /template/1/default/. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and...
CVE-2024-0599
A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file src\main\java\com\jspxcms\core\web\back\InfoController.java of the component Document Management Page. The manipulation of the argument title...
CVE-2024-0721
A vulnerability has been found in Jspxcms 10.2.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Survey Label Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to...
CVE-2025-25772
A Cross-Site Request Forgery CSRF in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request...
CVE-2025-25772
A Cross-Site Request Forgery CSRF in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request...
CVE-2025-25772
A Cross-Site Request Forgery CSRF in the component /back/UserController.java of Jspxcms v9.0 to v9.5 allows attackers to arbitrarily add Administrator accounts via a crafted request...
CVE-2024-1257 Jspxcms find_text.do cross site scripting
A vulnerability was found in Jspxcms 10.2.0. It has been classified as problematic. Affected is an unknown function of the file /ext/collect/findtext.do. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2024-0721 Jspxcms Survey Label cross site scripting
A vulnerability has been found in Jspxcms 10.2.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component Survey Label Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to...
PT-2023-30259 · Jspxcms · Jspxcms
Name of the Vulnerable Software and Affected Versions: Jspxcms version 10.2.0 Description: There is a Cross Site Scripting XSS issue in the "choose style tree.do" interface of the backend. This affects the ability to securely interact with the system, potentially allowing malicious scripts to be...
Jspxcms has a file upload vulnerability (CNVD-2019-40540)
Jspxcms is a scalable enterprise-class open source web content management system CMS. Jspxcms has a file upload vulnerability that can be exploited by an attacker to gain control of the web server...