CVE-2025-9721

A flaw has been found in Portabilis i-Educar up to 2.10. The affected element is an unknown function of the file /module/FormulaMedia/edit. This manipulation of the argument nome/formulaMedia causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publish...

CVE-2025-9721 Portabilis i-Educar edit cross site scripting

A flaw has been found in Portabilis i-Educar up to 2.10. The affected element is an unknown function of the file /module/FormulaMedia/edit. This manipulation of the argument nome/formulaMedia causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been publish...

CVE-2025-9721

Portabilis i-Educar

PT-2025-35395

Name of the Vulnerable Software and Affected Versions: Portabilis i-Educar versions up to 2.10 Description: A flaw has been found that allows for cross site scripting. The manipulation of the nome/formulaMedia argument in an unknown function of the /module/FormulaMedia/edit file causes this issue...

CVE-2025-9684 Portabilis i-Educar Formula de Cálculo de Média edit sql injection

A vulnerability was determined in Portabilis i-Educar up to 2.10. This affects an unknown part of the file /module/FormulaMedia/edit of the component Formula de Cálculo de Média Page. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The...

CVE-2024-28672

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mediaedit.php...

Cross site request forgery (csrf)

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mediaedit.php...

Desdev DedeCMS Security Breach

Desdev DedeCMS Dream Weaving Content Management System is a PHP-based open-source content management system CMS of China Zhuozhuo network Desdev company. The system has content publishing, content management, content editing and content retrieval functions. A security vulnerability exists in...

CVE-2024-28672

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mediaedit.php...

CVE-2024-28672

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mediaedit.php...

PT-2024-22514 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7 Description: A Cross-Site Request Forgery CSRF issue was found in DedeCMS. The issue is related to the "/dede/media edit.php" endpoint. Recommendations: For DedeCMS version 5.7, as a temporary workaround, consider...

CVE-2022-28528

bloofoxCMS v0.5.2.1 was discovered to contain an arbitrary file upload vulnerability via /admin/index.php?mode=content&page=media&action=edit...

BloofoxCms 代码问题漏洞

BloofoxCms is alexlang24 BloofoxCms individual developers of a Php-based text content management system. BloofoxCms 0.5.2.1 version has a security vulnerability, the vulnerability stems from the existence of arbitrary file upload vulnerability via...

Pigyard Art Gallery Multiple Remote Vulnerabilities

No description provided by source. Pigyard Art Gallery Multiple Remote Vulnerabilities Script Buy Now : http://www.pigyardgallery.com/howtobuy.php author: ZoRLu home: www.yildirimordulari.org contact: [email protected] not: msn i ekleyipte aptal aptal konusmayn yok ben seni eklemedim sen beni...

pigyard art Gallery - Multiple Vulnerabilities

Pigyard Art Gallery Multiple Remote Vulnerabilities Script Buy Now : http://www.pigyardgallery.com/howtobuy.php author: ZoRLu home: www.yildirimordulari.org contact: [email protected] not: msn i ekleyipte aptal aptal konusmayýn yok ben seni eklemedim sen beni ekledin vs. sorularýnýz varsa...