11 matches found
EUVD-2025-12409
Malicious code in bioql PyPI...
CVE-2025-3997
A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...
CVE-2025-3997
A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...
CVE-2025-3997 dazhouda lecms Personal Information Page index.php cross-site request forgery
A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...
CVE-2025-3997
CVE-2025-3997 affects dazhouda lecms 3.0.3. The vulnerability resides in the Personal Information Page’s endpoint, specifically the file range around /index.php?my-profile-ajax-1, where manipulation enables cross-site request forgery. Exploitation can be initiated remotely, and the public disclos...
CVE-2025-3997 dazhouda lecms Personal Information Page index.php cross-site request forgery
A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...
PT-2025-18035 · Unknown · Dazhouda Lecms
Name of the Vulnerable Software and Affected Versions: dazhouda lecms version 3.0.3 Description: A vulnerability has been found in dazhouda lecms, affecting an unknown part of the file "/index.php?my-profile-ajax-1" of the component Personal Information Page. The manipulation leads to cross-site...
XSS Vulnerability in Personal Information Page of E-commerce System of Kunming Aoyuan Technology Co.
Kunming Aoyuan Technology Co., Ltd. is a high-tech enterprise engaged in system development, website construction and other Internet businesses. There is an XSS vulnerability in the personal information page of the e-commerce system of Kunming Aoyuan Technology Co. Ltd, which can be exploited by...
PHPCMS Cross-Site Scripting Vulnerability
PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules such as news, pictures, downloads, information and products. A cross-site scripting vulnerability exists in PHPCMS versions 9.6.x through 9.6.3. A remote attacker can exploit this...
CVE-2018-6934
CSRF exists in student/personal-info in PHP Scripts Mall Online Tutoring Script 2.0.3...
Multiple Stored XSS Vulnerabilities in Journalx 2.0, a Remote Processing System for Journal Manuscripts
Journalx 2.0 is an independently developed platform for remote processing of journal manuscripts developed by Beijing Magtech. Journalx 2.0 contains multiple stored XSS vulnerabilities. The vulnerabilities can be exploited by an attacker to submit data with js code on the personal information pag...