EUVD-2018-10454

Malware in sbrugna...

EUVD-2018-10457

Malware in sbrugna...

EUVD-2018-10461

Malware in sbrugna...

CVE-2018-18744

An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the admin/SEMCMSMain.php URI...

Cross site scripting

An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMSMenu.php?lgid=1 during editing...

Cross site scripting

An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMSProducts.php?lgid=1 Keywords field...

Cross site scripting

An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the admin/SEMCMSMain.php URI...

CVE-2018-18739

An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMSProducts.php?lgid=1 Keywords field...

CVE-2018-18738

An XSS vulnerability (CVE-2018-18738) affects SEMCMS 3.4, exploitable via the admin/SEMCMS_Categories.php?pid=1&lgid=1&category_key parameter. The vulnerability is due to unsafely handled input in the category_key field, enabling injection of arbitrary web script/HTML. Reported impact metrics ind...

CVE-2018-18742

CVE-2018-18742 concerns SEMCMS 3.4, where a cross-site request forgery (CSRF) vulnerability exists in the admin flow accessed via the URI admin/SEMCMS_User.php?Class=add&CF=user. The issue, described as CSRF, could enable unauthorized operations on behalf of an authenticated user. CVSS metrics fr...

CVE-2018-18741

CVE-2018-18741 describes a Cross-Site Scripting (XSS) vulnerability in SEMCMS 3.4, exploitable via the URI admin/SEMCMS_Download.php?lgid=1 during editing. The issue is documented across multiple sources (NVD, CNVD, CVE lists) with the impact characteristics: confidentiality impact LOW, integrity...

CVE-2018-18744

CVE-2018-18744 describes a cross-site scripting (XSS) vulnerability in SEMCMS 3.4 . The issue is exploitable via the fifth text box in the path to the URI admin/SEMCMS_Main.php , enabling an attacker to inject arbitrary script/HTML. The provided data cites an XSS impact with low to medium severit...