34 matches found
EUVD-2019-4845
Malware in sbrugna...
EUVD-2019-4846
Malware in sbrugna...
EUVD-2019-4844
Malware in sbrugna...
EUVD-2019-4707
Malware in sbrugna...
EUVD-2018-8085
Malware in sbrugna...
EUVD-2018-8149
Malware in sbrugna...
EUVD-2018-13074
Malware in sbrugna...
CVE-2019-13339
In MiniCMS V1.10, stored XSS was found in mc-admin/page-edit.php content box, which can be used to get a user's cookie...
CVE-2023-46378
Stored Cross Site Scripting XSS vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php...
CVE-2023-46378
Stored Cross Site Scripting XSS vulnerability in MiniCMS 1.1.1 allows attackers to run arbitrary code via crafted string appended to /mc-admin/conf.php...
Design/Logic Flaw
Minio is a Multi-Cloud Object Storage framework. Starting with RELEASE.2020-12-23T02-24-12Z and prior to RELEASE.2023-03-13T19-46-17Z, a user with consoleAdmin permissions can potentially create a user that matches the root credential accessKey. Once this user is created successfully, the root...
CVE-2023-27589 Minio vulnerable to denial of access by an admin privileged user for root credential
Minio is a Multi-Cloud Object Storage framework. Starting with RELEASE.2020-12-23T02-24-12Z and prior to RELEASE.2023-03-13T19-46-17Z, a user with consoleAdmin permissions can potentially create a user that matches the root credential accessKey. Once this user is created successfully, the root...
Cross site scripting
MiniCMS v1.11 was discovered to contain a cross-site scripting XSS vulnerability via /mc-admin/page-edit.php...
MiniCMS 跨站脚本漏洞
MiniCMS is a content management system CMS designed for personal websites. A security vulnerability exists in MiniCMS v1.10 that allows remote attackers to execute arbitrary code by sending a crafted HTTP request injection command to the component "mc-admin post-edit.php"...
MiniCMS Cross-Site Scripting Vulnerability (CNVD-2019-23978)
MiniCMS is a content management system CMS designed for personal websites. A cross-site scripting vulnerability exists in the mc-admin/conf.php file in MiniCMS version 1.10. The vulnerability stems from a lack of proper validation of client-side data in the WEB application. An attacker can exploi...
CVE-2019-13341
In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...
CVE-2019-13340
In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the content box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, CVE-2018-20520, and CVE-2019-13186...
Cross site scripting
In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the content box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, CVE-2018-20520, and CVE-2019-13186...
Cross site scripting
In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php comment box, which can be used to get a user's cookie...
CVE-2019-13341
MiniCMS v1.10 contains a stored XSS in mc-admin/conf.php (comment box). The vulnerability arises from insufficient input validation of client-side data, enabling an attacker to steal a user’s cookie. The affected product is MiniCMS 1.10; no patch/version remediation details are provided in the su...