Lucene search
K

4 matches found

CVE
CVE
added 2026/05/31 11:30 p.m.20 views

CVE-2026-10203

The report identifies CVE-2026-10203 affecting OFCMS 1.1.3. The vulnerability lies in the JSON Query Interface: the Query function in OFCMS-admin/src/main/java/com/ofsoft/cms/admin/controller/system/SystemParamController.java, which enables SQL injection. This can be triggered remotely, with publ...

6.5CVSS6.4AI score0.00196EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.4 views

SAP KMC WPC 安全漏洞

SAP KMC WPC is a combination of enterprise content management and web publishing components from SAP. An information disclosure vulnerability exists in SAP KMC WPC, which can be exploited by an attacker to retrieve a user name via a simple parameter query, resulting in the disclosure of sensitive...

5.3CVSS6AI score0.00284EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/09/14 12:0 a.m.3 views

Aim 安全漏洞

Aim is an easy-to-use and high-performance open source experiment tracker from Aim Open Source USA. A security vulnerability exists in Aim version 3.24 and earlier versions, which stems from an incorrect manipulation of the parameter query that can lead to cross-site scripting attacks...

5.4CVSS4.1AI score0.0047EPSS
Exploits1References5
CNNVD
CNNVD
added 2020/11/30 12:0 a.m.6 views

WordPress plugin 跨站脚本漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A cross-site scripting vulnerability exists in WordPress EventON plugin version 3.0.5 and earlier...

6.1CVSS6.3AI score0.11696EPSS
Exploits2References6
Rows per page
Query Builder