Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-12409

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.0021EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/04/30 3:17 a.m.18 views

CVE-2025-3997

A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...

5.3CVSS6.8AI score0.0021EPSS
Exploits0References1
NVD
NVD
added 2025/04/28 3:15 a.m.7 views

CVE-2025-3997

A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...

5.3CVSS0.0021EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/04/28 2:31 a.m.20 views

CVE-2025-3997 dazhouda lecms Personal Information Page index.php cross-site request forgery

A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...

5.3CVSS0.0021EPSS
Exploits0References4
CVE
CVE
added 2025/04/28 2:31 a.m.55 views

CVE-2025-3997

CVE-2025-3997 affects dazhouda lecms 3.0.3. The vulnerability resides in the Personal Information Page’s endpoint, specifically the file range around /index.php?my-profile-ajax-1, where manipulation enables cross-site request forgery. Exploitation can be initiated remotely, and the public disclos...

5.3CVSS4.7AI score0.0021EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/04/28 2:31 a.m.5 views

CVE-2025-3997 dazhouda lecms Personal Information Page index.php cross-site request forgery

A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. This affects an unknown part of the file /index.php?my-profile-ajax-1 of the component Personal Information Page. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely...

5.3CVSS4.7AI score0.0021EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/04/28 12:0 a.m.3 views

PT-2025-18035 · Unknown · Dazhouda Lecms

Name of the Vulnerable Software and Affected Versions: dazhouda lecms version 3.0.3 Description: A vulnerability has been found in dazhouda lecms, affecting an unknown part of the file "/index.php?my-profile-ajax-1" of the component Personal Information Page. The manipulation leads to cross-site...

5.3CVSS4.4AI score0.0021EPSS
Exploits0References9
CNVD
CNVD
added 2019/09/10 12:0 a.m.1 views

XSS Vulnerability in Personal Information Page of E-commerce System of Kunming Aoyuan Technology Co.

Kunming Aoyuan Technology Co., Ltd. is a high-tech enterprise engaged in system development, website construction and other Internet businesses. There is an XSS vulnerability in the personal information page of the e-commerce system of Kunming Aoyuan Technology Co. Ltd, which can be exploited by...

6.2AI score
Exploits0
CNVD
CNVD
added 2019/03/25 12:0 a.m.3 views

PHPCMS Cross-Site Scripting Vulnerability

PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules such as news, pictures, downloads, information and products. A cross-site scripting vulnerability exists in PHPCMS versions 9.6.x through 9.6.3. A remote attacker can exploit this...

4.8CVSS5.9AI score0.00739EPSS
Exploits1References1
OSV
OSV
added 2018/04/12 10:29 p.m.2 views

CVE-2018-6934

CSRF exists in student/personal-info in PHP Scripts Mall Online Tutoring Script 2.0.3...

8.8CVSS5.8AI score0.00494EPSS
Exploits1References1
CNVD
CNVD
added 2016/12/14 12:0 a.m.1 views

Multiple Stored XSS Vulnerabilities in Journalx 2.0, a Remote Processing System for Journal Manuscripts

Journalx 2.0 is an independently developed platform for remote processing of journal manuscripts developed by Beijing Magtech. Journalx 2.0 contains multiple stored XSS vulnerabilities. The vulnerabilities can be exploited by an attacker to submit data with js code on the personal information pag...

6.6AI score
Exploits0
Rows per page
Query Builder