3 matches found
CVE-2024-13138
A vulnerability was found in wangl1989 mysiteforme 1.0. It has been declared as critical. This vulnerability affects the function upload of the file src/main/java/com/mysiteform/admin/service/ipl/LocalUploadServiceImpl. The manipulation of the argument test leads to unrestricted upload. The attac...
CVE-2024-13137
CVE-2024-13137 affects wangl1989 mysitforme 1.0, specifically the RestResponse function in src/main/java/com/mysiteforme/admin/controller/system/SiteController. The manipulation enables cross-site scripting and can be triggered remotely. The vulnerability is publicly disclosed and may be exploite...
CVE-2024-13136
A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by this issue is the function rememberMeManager of the file src/main/java/com/mysiteforme/admin/config/ShiroConfig.java. The manipulation leads to deserialization. The attack may be launched remotely. The...