9 matches found
CVE-2025-1892
A vulnerability was found in shishuocms 1.1. It has been classified as problematic. Affected is an unknown function of the file /manage/folder/add.json of the component Directory Deletion Page. The manipulation of the argument folderName leads to cross site scripting. It is possible to launch the...
CVE-2025-1891
A vulnerability was found in shishuocms 1.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...
EUVD-2025-7417
Malicious code in bioql PyPI...
EUVD-2025-7416
Malicious code in bioql PyPI...
CVE-2025-1892
A vulnerability was found in shishuocms 1.1. It has been classified as problematic. Affected is an unknown function of the file /manage/folder/add.json of the component Directory Deletion Page. The manipulation of the argument folderName leads to cross site scripting. It is possible to launch the...
CVE-2025-1892 shishuocms Directory Deletion Page add.json cross site scripting
A vulnerability was found in shishuocms 1.1. It has been classified as problematic. Affected is an unknown function of the file /manage/folder/add.json of the component Directory Deletion Page. The manipulation of the argument folderName leads to cross site scripting. It is possible to launch the...
CVE-2025-1891 shishuocms cross-site request forgery
A vulnerability was found in shishuocms 1.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-1890 shishuocms ManageUpLoadAction.java handleRequest unrestricted upload
A vulnerability has been found in shishuocms 1.1 and classified as critical. This vulnerability affects the function handleRequest of the file src/main/java/com/shishuo/cms/action/manage/ManageUpLoadAction.java. The manipulation of the argument file leads to unrestricted upload. The attack can be...
CVE-2025-1890
CVE-2025-1890 affects shishuocms 1.1. The vulnerability resides in the function handleRequest within src/main/java/com/shishuo/cms/action/manage/ManageUpLoadAction.java. The issue arises from manipulation of the file argument, enabling unrestricted upload. Exploitation can be performed remotely a...