Lucene search
K

13 matches found

CNVD
CNVD
added 2021/10/15 12:0 a.m.20 views

S-CMS XML External Entity Injection Vulnerability

S-CMS is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise to provide solutions to build a station of the product. S-CMS 3.0 version of the /api/notify.php exists XML external entity injection vulnerability. An attacker can use this vulnerability to read arbitrary files...

7.5CVSS7.5AI score0.01203EPSS
Exploits1References1
CNVD
CNVD
added 2021/09/02 12:0 a.m.19 views

S-CMS SQL Injection Vulnerability (CNVD-2021-93907)

S-CMS is a product developed by Zibo Shining Network Technology Co., Ltd. that provides solutions for building enterprise websites. a SQL injection vulnerability exists in the 4.edu.phpconnfunction.php component of S-CMS version 1.0. An attacker can use this vulnerability to access sensitive...

7.5CVSS3.8AI score0.01254EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/28 12:0 a.m.21 views

S-CMS Remote Code Execution Vulnerability (CNVD-2021-94956)

S-CMS is a product developed by Zibo Shining Network Technology Co., Ltd. that provides solutions for building enterprise websites. a remote code execution vulnerability exists in /1.com.php in S-CMS version 3.0 PHP version. An attacker can exploit the vulnerability by modifying PHP files to get ...

7.2CVSS5AI score0.0195EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/28 12:0 a.m.26 views

S-CMS Cross-Site Scripting Vulnerability (CNVD-2021-58260)

S-CMS is a product developed by Zibo Shining Network Technology Co., Ltd. that provides solutions for building enterprise websites...

4.8CVSS1.9AI score0.00579EPSS
Exploits1References1
CNVD
CNVD
added 2021/07/28 12:0 a.m.20 views

S-CMS Cross-Site Scripting Vulnerability (CNVD-2021-58259)

S-CMS is a product developed by Zibo Shining Network Technology Co., Ltd. that provides solutions for building enterprise websites. /app/formadd/ in S-CMS 3.0 has a stored cross-site scripting vulnerability that can be exploited to execute arbitrary Web scripts or HTML via the title entry text bo...

4.8CVSS1.2AI score0.00579EPSS
Exploits1References1
CNVD
CNVD
added 2021/06/02 12:0 a.m.2 views

S-CMS enterprise website building system suffers from SQL injection vulnerability (CNVD-2021-41048)

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS enterprise website builder system has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive...

7.8AI score
Exploits0
CNVD
CNVD
added 2021/06/02 12:0 a.m.4 views

File Upload Vulnerability in S-CMS Enterprise Website Builder System (CNVD-2021-41053)

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. There is a file upload vulnerability in S-CMS, which can be exploited by an attacker to gain control of the server...

7.4AI score
Exploits0
CNVD
CNVD
added 2021/04/26 12:0 a.m.4 views

SQL Injection Vulnerability in Shipping 100 Virtual Goods Auto-Shipping System of Zibo Shining Network Technology Co. Ltd (CNVD-2021-34231)

Shipping 100 virtual goods automatic shipping system is a powerful virtual goods automatic shipping system. A SQL injection vulnerability exists in Ship100 Virtual Goods Auto Shipment System, which can be exploited by attackers to obtain sensitive information from the database...

7.5AI score
Exploits0
CNVD
CNVD
added 2021/03/19 12:0 a.m.4 views

XSS Vulnerability in Paid Reading System of Zibo Shining Network Technology Co.

Paid Reading System is a website template for a paid knowledge system developed with fahuo100 in mind. Zibo Shining Network Technology Co., Ltd Paid Reading System has an XSS vulnerability that can be exploited by an attacker to obtain an administrator cookie...

6AI score
Exploits0
CNVD
CNVD
added 2021/03/19 12:0 a.m.4 views

SQL Injection Vulnerability in Paid Reading System of Zibo Shining Network Technology Co.

Paid Reading System is a website template for a paid knowledge system developed with fahuo100 in mind. Zibo Shining Network Technology Co., Ltd paid reading system SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitive information in the database...

7.5AI score
Exploits0
CNVD
CNVD
added 2020/12/22 12:0 a.m.5 views

SQL Injection Vulnerability in Online Education System of Zibo Shining Network Technology Co.

Zibo Shining Network Technology Co., Ltd. was established on November 06, 2014 . The company's business scope includes: the development and sale of computer software and hardware, Internet technology development, technical services, network information system integration, web design, network...

7.5AI score
Exploits0
CNVD
CNVD
added 2020/12/17 12:0 a.m.3 views

SQL Injection Vulnerability in the Frontend of Enterprise Website Building System of Zibo Shining Network Technology Co. Ltd (CNVD-2020-73484)

Zibo Shining Network Technology Co., Ltd. enterprise station building system is a specialized solution for enterprise station building products. There is a SQL injection vulnerability in the frontend of Zibo Shining Network Technology Co. Ltd enterprise website building system, which can be...

7.4AI score
Exploits0
CNVD
CNVD
added 2017/04/23 12:0 a.m.3 views

Backend Authentication Bypass Vulnerability in S-CMS

S-CMS is a corporate website building system developed by Zibo Shining Network Technology Co. S-CMS has a background authentication bypass vulnerability, due to the failure to accurately verify cookie information, an attacker can bypass login authentication by importing arbitrary cookie values...

7.3AI score
Exploits0
Rows per page
Query Builder