4 matches found
puppyCMS 安全漏洞
puppetCMS is a small, simple, flat file CMS written in PHP. A remote code execution vulnerability exists in puppyCMS version 5.1. The vulnerability stems from insecure permissions. The vulnerability can be exploited by an attacker via /admin/functions.php as a getshell...
Cross site scripting
An issue was discovered in puppyCMS 5.1. There is an XSS vulnerability via menu.php in the "Add Page/URL" URL link field...
CVE-2018-15847
An issue was discovered in puppyCMS 5.1. There is an XSS vulnerability via menu.php in the "Add Page/URL" URL link field...
CVE-2018-15847
CVE-2018-15847 affects puppyCMS 5.1: an XSS vulnerability exists in menu.php via the "Add Page/URL" field. The issue allows injection of JavaScript through that link field, as described by multiple sources (NVD/CNVD). CVSS metrics indicate a MEDIUM severity risk (base score 6.1/3.0; network attac...