8 matches found
PT-2026-27376
Name of the Vulnerable Software and Affected Versions Bootstrapy CMS affected versions not specified Description Multiple SQL injection flaws allow unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through POST parameters. This can lead to the extraction of...
CVE-2026-2126 User Submitted Posts <= 20260113 - Incorrect Authorization to Unauthenticated Category Restriction Bypass via 'user-submitted-category' Parameter
The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to Incorrect Authorization in all versions up to, and including, 20260113. This is due to the uspgetsubmittedcategory function accepting user-submitted category IDs from the POST body...
PT-2026-20377
The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to Incorrect Authorization in all versions up to, and including, 20260113. This is due to the usp get submitted category function accepting user-submitted category IDs from the POST body...
CVE-2025-9429
CVE-2025-9429 affects mtons mblog up to 3.5.0. The vulnerability is in the Post Handler’s file path /post/submit, where manipulation of the content/title argument leads to cross-site scripting (XSS). The issue can be triggered remotely and the exploit has been publicly disclosed. Affected version...
PT-2024-15564 · Git +2 · Anything-Llm +1
Name of the Vulnerable Software and Affected Versions: Software affected versions not specified Description: The issue allows an attacker, with permission to submit a link or submitting a link via POST to be collected that is using the file:// protocol, to introspect host files and other relative...
YXcmsApp某处xss导致getshell
简要描述: xss到后台导致getshell一条龙服务不过略鸡肋。 详细说明: YXCMS是一款面向企业的内容管理系统,采用三级缓存,MVC架构以BSD协议开源。 注册了用户以后来到用户管理页面,点击信息发布 - 增加咨询,发现是一个富文本编辑器,kindeditor。不管是什么编辑器,既然给了一个用户这么大的权限,这种情况下很容易出现xss。 随便输入点什么东西,抓包,修改content字段内容,写你的xss代码,什么都行。 好了。管理员在后台就能看到我提交的文章: 然后编辑的话就能触发xss:...
Woven dream SQL injection vulnerability re-use-vulnerability warning-the black bar safety net
Vulnerability type: SQL injection vulnerability Brief description: Need magicquotesgpc=Off,should be no big hazard vulnerability. The original the tick had a Dedecms injection vulnerability,seemingly did not repair,re-use,you can get the administrator password. Detailed description: With this...
Oblog AjaxServer.asp 变量ppass注入漏洞
Sub digglog //第691行 If Not lcaseRequest.ServerVariables"REQUESTMETHOD"="post" Then Response.End 。。。。。。 If request"ptrue"=1 Then //第703行 pdigg=oblog.checkuserlogineddiggunescapeTrimrequest"puser",Trimrequest"ppass" oblog.checkuserlogineddigg在/inc/ classsys.asp文件下: Public Function...