CVE-2021-41663

A cross-site scripting XSS vulnerability exists in Mini CMS V1.11. The vulnerability exists in the article upload: post-edit.php page...

CVE-2025-15458

A vulnerability was determined in bg5sbk MiniCMS up to 1.8. This affects an unknown function of the file /mc-admin/post-edit.php of the component Article Handler. Executing a manipulation can lead to improper authentication. It is possible to launch the attack remotely. The exploit has been...

EUVD-2018-2370

Malware in sbrugna...

EUVD-2018-8085

Malware in sbrugna...

EUVD-2021-28675

Malicious code in bioql PyPI...

CVE-2019-13186

In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via the tags box. An attacker can use it to get a user's cookie. This is different from CVE-2018-10296, CVE-2018-16233, and CVE-2018-20520...

CVE-2024-9281

A vulnerability was found in bg5sbk MiniCMS up to 1.11 and classified as problematic. This issue affects some unknown processing of the file post-edit.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and...

CVE-2024-9281

A vulnerability was found in bg5sbk MiniCMS up to 1.11 and classified as problematic. This issue affects some unknown processing of the file post-edit.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and...

CVE-2024-9281 bg5sbk MiniCMS post-edit.php cross-site request forgery

A vulnerability was found in bg5sbk MiniCMS up to 1.11 and classified as problematic. This issue affects some unknown processing of the file post-edit.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and...

MiniCMS 跨站请求伪造漏洞

MiniCMS is a mini content management system designed for personal websites by Dada bg5sbk individual developers. A cross-site request forgery vulnerability exists in MiniCMS 1.11 and earlier versions, which stems from some unknown processing in the file post-edit.php that can lead to cross-site...

CVE-2020-19896

File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php...

CVE-2020-19896

File inclusion vulnerability in Minicms v1.9 allows remote attackers to execute arbitary PHP code via post-edit.php...

CVE-2020-19896

CVE-2020-19896 affects Minicms v1.9 and is a file inclusion vulnerability that lets remote attackers execute arbitrary PHP code via the file post-edit.php. The NVD metrics indicate a CVSSv3.1 base score of 9.8 (CRITICAL) with network access, low attack complexity, no user interaction, and impacts...

CVE-2021-41663

A cross-site scripting XSS vulnerability exists in Mini CMS V1.11. The vulnerability exists in the article upload: post-edit.php page...

Cross site scripting

A cross-site scripting XSS vulnerability exists in Mini CMS V1.11. The vulnerability exists in the article upload: post-edit.php page...

CVE-2021-41663

The CVE-2021-41663 issue affects Mini CMS v1.11, with the XSS vulnerability located in the article upload flow (post-edit.php). The root cause is described as lack of checksum filtering of user-supplied and output data on that page, enabling client-side JavaScript execution. The shared sources (R...

MiniCMS 跨站脚本漏洞

MiniCMS is a content management system CMS designed for personal websites. A security vulnerability exists in MiniCMS v1.10 that allows remote attackers to execute arbitrary code by sending a crafted HTTP request injection command to the component "mc-admin post-edit.php"...

MiniCMS Directory Traversal Vulnerability

MiniCMS is a micro content management system designed for personal websites. A directory traversal vulnerability exists in post-edit.php in MiniCMS V1.10. A remote attacker can exploit this vulnerability to include and execute arbitrary files via the state parameter...

CVE-2020-36052

Directory traversal vulnerability in post-edit.php in MiniCMS V1.10 allows remote attackers to include and execute arbitrary files via the state parameter...

MiniCMS 路径遍历漏洞

MiniCMS is a micro content management system designed for personal websites. A directory traversal vulnerability exists in post-edit.php in MiniCMS V1.10. A remote attacker can exploit this vulnerability to include and execute arbitrary files via the state parameter...