Lucene search
K

8 matches found

CNNVD
CNNVD
added 2024/04/19 12:0 a.m.4 views

CSZ CMS 安全漏洞

CSZ CMS is an open source PHP-based content management system CMS. A security vulnerability exists in CSZ CMS version v.1.3.0, which stems from the presence of a cross-site scripting vulnerability that allows remote attackers to execute arbitrary code via the Default Keyword field...

5.4CVSS7AI score0.00561EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/06/23 5:15 p.m.1 views

CVE-2022-33113

Jfinal CMS v5.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the keyword text field under the publish blog module...

5.4CVSS6AI score0.00475EPSS
Exploits1References2
Prion
Prion
added 2019/12/30 12:15 a.m.12 views

Design/Logic Flaw

On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi aka the Keyword field of the URL Blocking Configuration...

4.3CVSS6AI score0.01436EPSS
Exploits1References3
Cvelist
Cvelist
added 2019/12/29 11:30 p.m.24 views

CVE-2019-20070

On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi aka the Keyword field of the URL Blocking Configuration...

6.1AI score0.01436EPSS
Exploits1References3
CNVD
CNVD
added 2018/05/03 12:0 a.m.3 views

EasyCMS Cross-Site Scripting Vulnerability (CNVD-2018-08985)

EasyCMS is a lightweight scalable open source content management system CMS written in PHP. A cross-site scripting vulnerability exists in EasyCMS version 1.3. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the title, keyword, abstract and content...

5.4CVSS5.9AI score0.00545EPSS
Exploits1References1
Cvelist
Cvelist
added 2006/12/10 2:0 a.m.21 views

CVE-2006-6400

Buffer overflow in JustSystems Hanako 2004 through 2006, Hanako viewer 1.x, Ichitaro 2004, Ichitaro 2005, Ichitaro Lite2, Ichitaro viewer 4.x, and Sanshiro 2005 allows remote attackers to execute arbitrary code via the 1 Keyword and 2 Title fields, related to string length fields...

7.9AI score0.03012EPSS
Exploits0References7
NVD
NVD
added 2005/06/29 4:0 a.m.13 views

CVE-2005-2063

Multiple cross-site scripting XSS vulnerabilities in ActiveBuyAndSell 6.2 allow remote attackers to inject arbitrary web script or HTML via the 1 Title parameter to sendpassword.asp or 2 Keyword field in search.asp...

4.3CVSS5.8AI score0.00963EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/06/28 4:0 a.m.19 views

CVE-2005-2063

Multiple cross-site scripting XSS vulnerabilities in ActiveBuyAndSell 6.2 allow remote attackers to inject arbitrary web script or HTML via the 1 Title parameter to sendpassword.asp or 2 Keyword field in search.asp...

5.8AI score0.00963EPSS
Exploits0References2
Rows per page
Query Builder