EUVD-2023-42708

Malicious code in bioql PyPI...

EUVD-2022-52906

Malicious code in bioql PyPI...

EUVD-2025-5359

Malicious code in bioql PyPI...

CVE-2023-51154

Jizhicms v2.5 was discovered to contain an arbitrary file download vulnerability via the component /admin/c/PluginsController.php...

CVE-2025-25785

JizhiCMS v2.5.4 was discovered to contain a Server-Side Request Forgery SSRF via the component \c\PluginsController.php. This vulnerability allows attackers to perform an intranet scan via a crafted request...

PT-2024-14060 · Jizhicms · Jizhicms

Name of the Vulnerable Software and Affected Versions: Jizhicms version 2.5 Description: The issue is related to an arbitrary file download vulnerability. It affects the component /admin/c/PluginsController.php. Recommendations: For Jizhicms version 2.5, consider restricting access to the...

JIZHICMS Security Vulnerabilities

Extreme Networks Technology JIZHICMS Extreme CMS is an open source content management system CMS from China's Extreme Networks Technology. A security vulnerability exists in JIZHICMS v2.5, which originates from the component /admin/c/PluginsController.php containing an arbitrary file download...

Arbitrary file deletion

An arbitrary file download vulnerability in the /c/PluginsController.php component of jizhi CMS 1.9.5 allows attackers to execute arbitrary code via downloading a crafted plugin...

JIZHICMS Security Vulnerabilities

Extreme Networks Technology JIZHICMS Extreme CMS is an open source content management system CMS from China's Extreme Networks Technology Company. A security vulnerability exists in JIZHICMS version 1.9.5, which originates from an arbitrary file download vulnerability in the...

CVE-2022-31393

CVE-2022-31393 affects Jizhicms v2.2.5, with a Server-Side Request Forgery (SSRF) flaw exposed via the Index function in app/admin/c/PluginsController.php. Red Hat and NVD records confirm the issue and reference SSRF as the underlying vulnerability in this CMS. The CVSS metrics indicate a high-im...