EUVD-2020-23980

Malware in sbrugna...

CVE-2020-36494

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting XSS vulnerabilities in the component mychanneledit.php via the filename, mid, userid, and templet' parameters...

Cross site request forgery (csrf)

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mychanneledit.php...

CVE-2024-28673

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mychanneledit.php...

CVE-2024-28673

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mychanneledit.php...

CVE-2024-28673

CVE-2024-28673 affects DedeCMS v5.7 and describes a Cross-Site Request Forgery (CSRF) vulnerability exploitable via the /dede/mychannel_edit.php endpoint. The NVD/Red Hat and related feeds consistently cite CSRF impact with a CVSSv3.1 base score of 8.8 (High) and a user interaction requirement. T...

Cross site scripting

DedeCMS v7.5 SP2 was discovered to contain multiple cross-site scripting XSS vulnerabilities in the component mychanneledit.php via the filename, mid, userid, and templet' parameters...

CVE-2020-36494

CVE-2020-36494 : Affects DedeCMS v7.5 SP2. The component involved is mychannel_edit.php, with multiple cross-site scripting (XSS) vulnerabilities exploitable via the parameters filename, mid, userid, and templet. The connected documents reiterate the same description but do not provide explicit e...

DedeCMS v7.5 SP2 - Multiple Cross Site Web Vulnerabilities

Document Title: =============== DedeCMS v7.5 SP2 - Multiple Cross Site Web Vulnerabilities References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2194 Release Date: ============= 2020-04-07 Vulnerability Laboratory ID VL-ID: ===================================...