Lucene search
K

5 matches found

CNVD
CNVD
added 2022/06/27 12:0 a.m.31 views

74cms Cross-Site Scripting Vulnerability (CNVD-2022-58894)

74cms is a PHP and MySQL-based online recruitment system from China Xunyi Technology Co. 74cmsSE version v3.5.1 contains a cross-site scripting vulnerability, which originates from the lack of user-supplied data and output data validation filtering in /index/notice/show. An attacker could exploit...

4.3CVSS3.3AI score0.00617EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/03/29 12:0 a.m.20 views

Maccms Cross-Site Scripting Vulnerability (CNVD-2022-30794)

Maccms is a PHP-based film and television content management system CMS. v10 version of Maccms contains a cross-site scripting vulnerability, which originates from the lack of user-supplied data and output data validation filtering in the select and input parameters in...

6.1CVSS3AI score0.00557EPSS
Exploits1References1
CNVD
CNVD
added 2022/03/02 12:0 a.m.19 views

Hospital Management System Cross-Site Scripting Vulnerability (CNVD-2022-67482)

Hospital Management System is a hospital management system. The system includes patient information management, ward management, surgery schedule management and financial management, etc. A cross-site scripting vulnerability exists in Hospital Management System v1.0, which stems from the lack of...

5.4CVSS1.1AI score0.00483EPSS
Exploits1References1
CNVD
CNVD
added 2022/01/23 12:0 a.m.17 views

mysiteforme cross-site scripting vulnerability

Mysiteforme is a permission management system. mysiteforme suffers from a cross-site scripting vulnerability that stems from the lack of user-supplied data and output data validation filtering in the blog tagging function of the backend blog management. An attacker could exploit the vulnerability...

5.4CVSS3AI score0.00441EPSS
Exploits1References1
CNVD
CNVD
added 2021/12/12 12:0 a.m.12 views

Gryphon Tower Cross-Site Scripting Vulnerability

A cross-site scripting vulnerability exists in Gryphon Tower, a wireless router from Gryphon. The vulnerability stems from a lack of user-supplied data and output data validation filtering in the url parameter of cgi-bin/luci/siteaccess/, which can be exploited to execute client-side JavaScript...

6.1CVSS1.8AI score0.02557EPSS
Exploits1References1
Rows per page
Query Builder