Lucene search
+L

8 matches found

euvd
euvd
added 2026/03/26 6:30 a.m.9 views

EUVD-2026-16118

A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is an unknown function of the file /admin/Member/index.html. This manipulation of the argument Search causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been published and may be used. The...

5.3CVSS4.2AI score0.00337EPSS
Exploits0References5
nvd
nvd
added 2026/03/26 6:16 a.m.10 views

CVE-2026-4845

A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is an unknown function of the file /admin/Member/index.html. This manipulation of the argument Search causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been published and may be used. The...

5.3CVSS0.00337EPSS
Exploits0References4
cve
cve
added 2026/03/26 5:31 a.m.10 views

CVE-2026-4845

CVE-2026-4845 affects dameng100 muucmf 1.9.5.20260309: an unknown function in /admin/Member/index.html is vulnerable. Manipulating the Search argument triggers cross-site scripting (XSS). The issue can be initiated remotely, and an exploit has been published. Vendor was contacted but did not resp...

5.3CVSS4.2AI score0.00337EPSS
Exploits0References4
cvelist
cvelist
added 2026/03/26 5:31 a.m.37 views

CVE-2026-4845 dameng100 muucmf index.html cross site scripting

A flaw has been found in dameng100 muucmf 1.9.5.20260309. Impacted is an unknown function of the file /admin/Member/index.html. This manipulation of the argument Search causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been published and may be used. The...

5.3CVSS0.00337EPSS
Exploits0References4
cnnvd
cnnvd
added 2026/03/26 12:0 a.m.11 views

MuuCmf 代码注入漏洞

MuuCmf is an open-source application development framework created by Dameng100. Version muucmf 1.9.5.20260309 contains a code injection vulnerability. This vulnerability stems from incorrect handling of parameters in the file admin/Member/index.html, specifically the parameter Search, which may...

5.3CVSS5.7AI score0.00337EPSS
Exploits0References4
osv
osv
added 2019/01/08 11:29 p.m.4 views

CVE-2019-5725

qibosoft through V7 allows remote attackers to read arbitrary files via the member/index.php main parameter, as demonstrated by SSRF to a URL on the same web site to read a .sql file...

7.5CVSS7.1AI score0.01493EPSS
Exploits1References1
osv
osv
added 2018/04/19 8:29 a.m.5 views

CVE-2018-10219

baijiacms V3 has physical path leakage via an index.php?mod=mobile&name=member&do=index request...

5.3CVSS5.8AI score0.0087EPSS
Exploits0References1
cnvd
cnvd
added 2017/03/04 12:0 a.m.6 views

PHPCMS '/phpcms/modules/member/index.php' file upload vulnerability

PHPCMS is a website management software. The software adopts modular development and supports a variety of classification methods, using it can easily realize the design, development and maintenance of personalized websites. A file upload vulnerability exists in PHPCMS...

7.1AI score
Exploits0References1
Rows per page
Query Builder