EUVD-2026-23864

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...

EUVD-2026-23844

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...

CVE-2026-6649

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...

CVE-2026-6649 Qibo CMS headers server-side request forgery

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...

CVE-2026-6649

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...

CVE-2026-6649

CVE-2026-6649 affects Qibo CMS 1.0. The issue involves an unspecified function at /index/image/headers where manipulating an argument starts can trigger server-side request forgery. This can be exploited remotely, and public disclosure of the exploit has occurred. Vendor response was not provided...

CVE-2026-6649 Qibo CMS headers server-side request forgery

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...

CVE-2026-6648

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...

CVE-2026-6648

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...

CVE-2026-6648

CVE-2026-6648 affects Qibo CMS 1.0, specifically the Internal Message Module. The issue is a cross-site scripting vulnerability triggered by manipulating the module’s functionality. The attack is described as remotely initiable, with a publicly available exploit. Details on affected versions are ...

CVE-2026-6648 Qibo CMS Internal Message cross site scripting

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...

CVE-2026-6648 Qibo CMS Internal Message cross site scripting

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...

PT-2026-33760

A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...

PT-2026-33771

A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...

Qibo CMS 安全漏洞

Qibo CMS is a content management system developed by Qibo CMS Inc., designed for website construction and content publishing. Version 1.0 of Qibo CMS has a security vulnerability. This vulnerability stems from improper handling of parameters “starts” in files, indexes, images, and headers, which...

Qibo CMS 安全漏洞

Qibo CMS is a content management system developed by Qibo CMS Inc., designed for website construction and content publishing. Version 1.0 of Qibo CMS has a security vulnerability, which stems from improper handling of an unknown feature of the Internal Message Module component. This vulnerability...

File Containment Vulnerability in Qibo CMS System

Qibo CMS whole station system is a domestic open source CMS system, including articles, pictures, downloads, shopping malls, built-in features, orders, exams and other modules. Qibo CMS system has a file containment vulnerability that can be exploited by attackers to obtain server control...

SQL Injection Vulnerability in Qibo Enterprise System

Qibo enterprise system is specifically tailored to the enterprise station, in the original Qibo CMS developed on the basis of the CMS, in addition to the CMS complex functions, increased the enterprise station required by the characteristics of the function. Qibo Enterprise System has a SQL...

SQL Injection Vulnerability in Qibo Cloud Micro Distribution

Micro-distribution is a "micro-mall + micro-distribution" social e-commerce marketing platform, based on the spread of the WeChat circle of friends, easily lead thousands of WeChat users together for you to sell goods, sales of goods. Qibo cloud micro distribution SQL injection vulnerability...

XSS Vulnerability in the Short Message Module of the Qibo x1 Content Management System

Qibo X1 1.0 is a content management system developed by Qibo Software based on thinkphp5. An XSS vulnerability exists in the short message module of the Qibo X1 content management system, which can be exploited by an attacker to obtain user cookie information...