23 matches found
PT-2022-23268 · Unknown · Siteserver Cms
Name of the Vulnerable Software and Affected Versions: SiteServerCMS versions 5.X Description: The issue is related to a Remote-download-Getshell-vulnerability. This vulnerability can be exploited via the "/SiteServer/Ajax/ajaxOtherService.aspx" API endpoint. Recommendations: For SiteServerCMS...
Arbitrary File Deletion Vulnerability in SiteServerCMS
SiteServerCMS is a content management system developed by Beijing Baiyong Qianwei Software Technology Development Co. SiteServerCMS has an arbitrary file deletion vulnerability. An attacker can exploit this vulnerability to delete arbitrary files...
Logic Flaw Vulnerability in SiteServerCMS
SiteServerCMS is a content management system developed by Beijing Baiyong Qianwei Software Technology Development Co. A logic flaw exists in SiteServerCMS. An attacker can exploit the vulnerability to perform unauthorized operations...