36 matches found
CVE-2020-19263
A cross-site request forgery CSRF in MipCMS v5.0.1 allows attackers to arbitrarily escalate user privileges to administrator via index.php?s=/user/ApiAdminUser/itemEdit...
CVE-2020-19263
CVE-2020-19263 is a CSRF vulnerability in MipCMS v5.0.1 that allows an attacker to arbitrarily escalate privileges to administrator via index.php?s=/user/ApiAdminUser/itemEdit. The NVD entry documents this as a CSRF with the impact of elevating privileges (C/H/I/A high) and a CVSS v3.1 base score...
MipCMS 跨站请求伪造漏洞
MipCMS is a software application. A content management system based on Baidu Mobile Accelerator MIP and is also a SEO site building system. A security vulnerability exists in MipCMS version 5.0.1, which originates from the lack of valid validation for index.php?s=/user/ApiAdminUser/itemEdit in th...
MipCMS 跨站请求伪造漏洞
MipCMS is a software application. A set of content management system based on Baidu Mobile Accelerator MIP and development, but also a set of SEO site building system. MipCMS version 5.0.1 has a security vulnerability, the vulnerability stems from the lack of valid validation in the software...
MipCMS server-side request forgery vulnerability
MipCMS is an application software. A content management system based on Baidu Mobile Accelerator MIP and an SEO website building system. mipCMS 5.0.1 has a server-side request forgery vulnerability that can be exploited by attackers to access sensitive information...
CVE-2020-20582
A server side request forgery SSRF vulnerability in /ApiAdminDomainSettings.php of MipCMS 5.0.1 allows attackers to access sensitive information...
CVE-2020-20582
A server side request forgery SSRF vulnerability in /ApiAdminDomainSettings.php of MipCMS 5.0.1 allows attackers to access sensitive information...
Server side request forgery (ssrf)
A server side request forgery SSRF vulnerability in /ApiAdminDomainSettings.php of MipCMS 5.0.1 allows attackers to access sensitive information...
CVE-2020-20582
MipCMS 5.0.1 contains a server-side request forgery (SSRF) in /ApiAdminDomainSettings.php that can be exploited to access sensitive information. The issue is confirmed across multiple connected sources (CVE listings and vendor/ CNVD-type records) and is described consistently as an SSRF affecting...
CVE-2020-20582
A server side request forgery SSRF vulnerability in /ApiAdminDomainSettings.php of MipCMS 5.0.1 allows attackers to access sensitive information...
MipCMS 代码问题漏洞
MipCMS is an application software. A content management system based on Baidu Mobile Accelerator MIP and an SEO website building system. mipCMS 5.0.1 has a server-side request forgery vulnerability that can be exploited by attackers to access sensitive information...
SSRF Vulnerability in MIPCMS
MIPCMS is a free and open source based on Baidu mobile gas pedal MIP engine articles, information, content management system, but also the system for the Internet webmasters, entrepreneurs and other groups to create SEO optimized after the station-building system. MIPCMS there are SSRF...
Remote Code Execution Vulnerability in MIPCMS
MIPCMS is a free and open source based on Baidu mobile gas pedal MIP engine articles, information, content management system, but also the system for the Internet webmasters, entrepreneurs and other groups to create SEO optimized after the station-building system. MIPCMS remote code execution...
Remote Code Execution Vulnerability in MIPCMS V3.1.0
MIPCMS is a free and open source based on Baidu mobile gas pedal MIP engine articles, information, content management system, but also the system for the Internet webmasters, entrepreneurs and other groups to create SEO optimized after the station-building system. MIPCMS V3.1.0 remote code...
SQL Injection Vulnerability in MIPCMS ApiAdminUser.php Page
MIPCMS is a free and open source based on Baidu Mobile Accelerator MIP engine based on the development of articles, information, content management system, but also the system for the Internet webmasters, entrepreneurs and other groups to create SEO-optimized after the station-building system. A...
SQL Injection Vulnerability in MIPCMS ApiAdminTag.php Page
MIPCMS is a free and open source based on Baidu Mobile Accelerator MIP engine based on the development of articles, information, content management system, but also the system for the Internet webmasters, entrepreneurs and other groups to create SEO-optimized after the station-building system. A...