33 matches found
CVE-2026-6649
A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...
CVE-2026-6648
A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...
EUVD-2026-23844
A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...
CVE-2026-6649
A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...
CVE-2026-6649 Qibo CMS headers server-side request forgery
A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...
CVE-2026-6648
A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...
CVE-2026-6648
A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...
CVE-2026-6648
CVE-2026-6648 affects Qibo CMS 1.0, specifically the Internal Message Module. The issue is a cross-site scripting vulnerability triggered by manipulating the module’s functionality. The attack is described as remotely initiable, with a publicly available exploit. Details on affected versions are ...
CVE-2026-6648 Qibo CMS Internal Message cross site scripting
A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...
CVE-2026-6648 Qibo CMS Internal Message cross site scripting
A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionality of the component Internal Message Module. Performing a manipulation results in cross site scripting. The attack can be initiated remotely. The exploit has been made public and could be used. The...
PT-2026-33771
A vulnerability was determined in Qibo CMS 1.0. Affected by this issue is some unknown functionality of the file /index/image/headers. Executing a manipulation of the argument starts can lead to server-side request forgery. The attack can be launched remotely. The exploit has been publicly...
Qibo CMS 安全漏洞
Qibo CMS is a content management system developed by Qibo CMS Inc., designed for website construction and content publishing. Version 1.0 of Qibo CMS has a security vulnerability, which stems from improper handling of an unknown feature of the Internal Message Module component. This vulnerability...
Qibo CMS 安全漏洞
Qibo CMS is a content management system developed by Qibo CMS Inc., designed for website construction and content publishing. Version 1.0 of Qibo CMS has a security vulnerability. This vulnerability stems from improper handling of parameters “starts” in files, indexes, images, and headers, which...
File Containment Vulnerability in Qibo CMS System
Qibo CMS whole station system is a domestic open source CMS system, including articles, pictures, downloads, shopping malls, built-in features, orders, exams and other modules. Qibo CMS system has a file containment vulnerability that can be exploited by attackers to obtain server control...
SQL Injection Vulnerability in Qibo CMS (CNVD-2021-14441)
Qibo CMS system uses the core + plug-in + channel module system architecture, while then combined with visual labeling technology, can be evolved into a variety of corporate, government, education, units, school websites. Qibo CMS whole site system has a SQL injection vulnerability, attackers can...
SQL Injection Vulnerability in Qibo CMS System
Qibo CMS whole station system is one of the domestic open source content management system. Qibo CMS whole site system SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information in the database...
Unauthorized Access Vulnerability in Qibo CMS V9
Qibo CMS whole station system is a Guangzhou Qibo Network Technology Co. Qibo CMS V9 unauthorized access vulnerability, attackers can use the vulnerability to obtain sensitive information...
Stored Cross-site Scripting Vulnerability in Qibo CMS System
Qibo CMS system is a content management system under Guangzhou Qibo Network Technology Co. A stored cross-site scripting vulnerability exists in the Qibo CMS system. An attacker can insert malicious js code into a page to obtain user cookies and other information, leading to user hijacking...
XSS Vulnerability in Qibo cms
Qibo CMS system, the original PHP168 whole station system is a more comprehensive product in the domestic open source CMS system, providing a variety of modules including articles, pictures, downloads, shopping malls, built-in features, orders, exams and so on. Qibo cms XSS vulnerability , an...
File Inclusion Vulnerability in Qibo CMS
Qibo CMS system uses the core + plug-in + channel module system architecture, while then combined with visual labeling technology, can be evolved into a variety of corporate, government, education, units, school websites. A file inclusion vulnerability exists in Qibo CMS. An attacker can exploit...