Lucene search
+L

97 matches found

cnnvd
cnnvd
added 2025/12/28 12:0 a.m.5 views

Lin-CMS-TP5 代码注入漏洞

Lin-CMS-TP5 is a content management system by ChenJinchuang's personal developer. A code injection vulnerability exists in Lin-CMS-TP5 0.3.3 and earlier versions, which originates from the incorrect operation of the parameter File in the file application/lib/file/LocalUploader.php, which may lead...

6.5CVSS6.7AI score0.00291EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2025/12/28 12:0 a.m.9 views

PT-2025-53666

Name of the Vulnerable Software and Affected Versions TaleLin Lin-CMS versions up to 0.6.0 Description A security issue exists in TaleLin Lin-CMS. The issue involves the manipulation of the username/password arguments, potentially leading to exposure of passwords within the configuration file...

6.3CVSS5.6AI score0.00274EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2025/12/28 12:0 a.m.5 views

PT-2025-53644

Name of the Vulnerable Software and Affected Versions ChenJinchuang Lin-CMS-TP5 versions up to 0.3.3 Description A flaw exists in ChenJinchuang Lin-CMS-TP5 that allows for remote code injection. The issue is located in the Upload function within the LocalUploader.php file of the File Upload Handl...

6.5CVSS7AI score0.00291EPSS
Exploits0References9
euvd
euvd
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-0111

Malware in sbrugna...

6.1CVSS6.1AI score0.0127EPSS
Exploits1References4
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-0110

Malware in sbrugna...

9.8CVSS9.3AI score0.02026EPSS
Exploits1References5
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-0112

Malware in sbrugna...

9.8CVSS9.2AI score0.02277EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-7230

Malicious code in bioql PyPI...

6.6CVSS6.5AI score0.01016EPSS
Exploits1References5
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-39096

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00453EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 8:49 a.m.4 views

CVE-2024-41601

Insecure Permissions vulnerability in lin-CMS v.0.2.0 and before allows a remote attacker to obtain sensitive information via the login method in the UserController.java component...

7.5CVSS6.5AI score0.00453EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 12:8 a.m.5 views

CVE-2022-44244

An authentication bypass in Lin-CMS v0.2.1 allows attackers to escalate privileges to Super Administrator...

6.6CVSS7.3AI score0.01016EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 10:57 p.m.8 views

CVE-2022-32430

An access control issue in Lin CMS Spring Boot v0.2.1 allows attackers to access the backend information and functions within the application...

7.5CVSS6.6AI score0.03634EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 4:56 p.m.4 views

CVE-2020-18701

Incorrect Access Control in Lin-CMS-Flask v0.1.1 allows remote attackers to obtain sensitive information and/or gain privileges due to the application not invalidating a user's authentication token upon logout, which allows for replaying packets...

9.8CVSS7AI score0.02277EPSS
Exploits1
redhatcve
redhatcve
added 2025/05/22 3:52 p.m.7 views

CVE-2020-18698

Improper Authentication in Lin-CMS-Flask v0.1.1 allows remote attackers to launch brute force login attempts without restriction via the 'login' function in the component 'app/api/cms/user.py'...

9.8CVSS7AI score0.02026EPSS
Exploits1
redhatcve
redhatcve
added 2025/05/22 3:51 p.m.6 views

CVE-2020-18699

Cross Site Scripting XSS in Lin-CMS-Flask v0.1.1 allows remote attackers to execute arbitrary code by entering scripts in the the 'Username' parameter of the in component 'app/api/cms/user.py'...

6.1CVSS6.7AI score0.0127EPSS
Exploits1
nvd
nvd
added 2024/07/19 6:15 p.m.28 views

CVE-2024-41600

Insecure Permissions vulnerability in lin-CMS Springboot v.0.2.1 and before allows a remote attacker to obtain sensitive information via the login method in the UserController.java component...

7.5CVSS0.00445EPSS
Exploits0References1
osv
osv
added 2024/07/19 6:15 p.m.5 views

CVE-2024-41600

Insecure Permissions vulnerability in lin-CMS Springboot v.0.2.1 and before allows a remote attacker to obtain sensitive information via the login method in the UserController.java component...

7.5CVSS5.8AI score0.00445EPSS
Exploits0References1
nvd
nvd
added 2024/07/19 5:15 p.m.18 views

CVE-2024-41601

Insecure Permissions vulnerability in lin-CMS v.0.2.0 and before allows a remote attacker to obtain sensitive information via the login method in the UserController.java component...

7.5CVSS0.00453EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2024/07/19 12:0 a.m.9 views

PT-2024-29457 · Unknown · Lin-Cms Springboot

Name of the Vulnerable Software and Affected Versions: lin-CMS Springboot versions 0.2.1 and before Description: The issue allows a remote attacker to obtain sensitive information via the login method in the UserController.java component. Recommendations: For versions 0.2.1 and before, consider...

7.5CVSS6.8AI score0.00445EPSS
Exploits0References6
cve
cve
added 2024/07/19 12:0 a.m.65 views

CVE-2024-41601

CVE-2024-41601 affects lin-CMS versions 0.2.0 and earlier. The vulnerability is described as an insecure permissions issue in the UserController.java login path, allowing a remote attacker to obtain sensitive information. The provided documents identify the affected component and root cause but d...

7.5CVSS6.5AI score0.00453EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/07/19 12:0 a.m.14 views

CVE-2024-41600

Insecure Permissions vulnerability in lin-CMS Springboot v.0.2.1 and before allows a remote attacker to obtain sensitive information via the login method in the UserController.java component...

6.5AI score0.00445EPSS
Exploits0References1
Rows per page
Query Builder