PT-2024-23493 · Seacms · Seacms

Name of the Vulnerable Software and Affected Versions: SeaCMS version 12.9 Description: An issue was discovered that allows remote attackers to execute arbitrary code via the admin notify.php endpoint. Recommendations: For SeaCMS version 12.9, consider disabling access to the admin notify.php...

PT-2022-25161 · Feehicms · Feehicms

Name of the Vulnerable Software and Affected Versions: FeehiCMS version 2.1.1 Description: The issue allows remote attackers to run arbitrary code via the callback parameter to the "/cms/notify" API endpoint. This enables attackers to execute malicious scripts on the victim's browser, potentially...

FeehiCMS 跨站脚本漏洞

FeehiCMS is a Php-based CMS website builder by Liufee Personal Developer. A security vulnerability exists in FeehiCMS version 2.1.1, which originated from allowing a remote attacker to run arbitrary code via the callback parameters of /cms/notify...

PT-2022-4716 · Jenkins · Jenkins Git Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Git Plugin versions 4.11.3 and earlier Description: A missing permission check in the Jenkins Git Plugin allows unauthenticated attackers to trigger builds of jobs configured to use an attacker-specified Git repository and to cause th...