CVE-2022-31133

HumHub is an Open Source Enterprise Social Network. Affected versions of HumHub are vulnerable to a stored Cross-Site Scripting XSS vulnerability. For exploitation, the attacker would need a permission to administer the Spaces feature. The names of individual "spaces" are not properly escaped and...

CVE-2022-24865 Improper access control in humhub

HumHub is an Open Source Enterprise Social Network. In affected versions users who are forced to change their password by an administrator may retrieve other users' data. This issue has been resolved by commit eb83de20. It is recommended that the HumHub is upgraded to 1.11.0, 1.10.4 or 1.9.4. The...

YMBCMS suffers from SQL injection vulnerability (CNVD-2021-26017)

YMBCMS website management system also known as YMBCMS is one of the independent research and development products of Hebei OuRunTianTeng YMBCMS network studio.YMBCMS set computer station, cell phone station, WeChat public platform, small program, APP in one, shared space, data synchronization, is...

YMBCMS suffers from SQL injection vulnerability (CNVD-2021-12767)

YMBCMS website management system also known as YMBCMS is one of the independent research and development products of Hebei OuRunTianTeng YMBCMS network studio.YMBCMS set computer station, cell phone station, WeChat public platform, small program, APP in one, shared space, data synchronization, is...

Code execution vulnerability in pbootcms

PbootCMS is a new core and permanent open source free PHP enterprise website development and construction management system , is a set of efficient , simple , strong and free commercial PHP CMS source code , to meet the needs of various types of enterprise website development and construction...