2 matches found
CVE-2026-22786
Gin-vue-admin is a backstage management system based on vue and gin. Gin-vue-admin = v2.8.7 has a path traversal vulnerability in the breakpoint resume upload functionality. Attacker can upload any files on any directory. In the breakpointcontinue.go file, the MakeFile function accepts a fileName...
74cms Cross-Site Scripting Vulnerability
74cms is a PHP and MySQL based online recruitment system of Taiyuan Xunyi Technology Co. A cross-site scripting vulnerability exists in the upload/index.php?c=resume&a=resumelist page in version 4.2.111 of 74cms, which can be exploited by a remote attacker with the help of the 'key' parameter to...