25 matches found
ARRIS NVG443B 跨站脚本漏洞
The ARRIS NVG443B is a full-featured, high-performance gateway from ARRIS America. A security vulnerability exists in the ARRIS NVG443B version 9.3.0h3d36, which stems from the presence of cross-site scripting XSS that allows an attacker to execute arbitrary web script or HTML via a specially...
CVE-2022-24220
eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpost.php...
Victor CMS 代码问题漏洞
Victor CMS is an open source content management system from the developers of Victor Alagwu Software in Nigeria. version 1.0 of Victor CMS is vulnerable to arbitrary file uploads. An attacker can execute arbitrary code by uploading files to CMS site-masteradminincludesadminaddpost.php...
CVE-2017-5871
creationtimestamp| type| source ---|---|--- 2019-05-23 01:14:23+00:00| seen| https://t.me/cibsecurity/4462 2025-08-12 15:00:06+00:00| published-proof-of-concept| Telegram/I1-RVq7Tv81JPlsA1vIwUFFwdgzKiY6VBuJmt1XeBjrLg 2025-08-14 21:02:26+00:00| seen|...
WTCMS Cross-Site Request Forgery Vulnerability
WTCMS is a content management system CMS based on Thinkphp. A cross-site request forgery vulnerability exists in WTCMS version 1.0. A remote attacker can exploit this vulnerability to add an administrator account with the help of the index.php?admin&m=user&a=addpost URI...