Lucene search
K

85 matches found

NVD
NVD
•added 2026/06/29 4:16 a.m.•10 views

CVE-2026-13529

A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation of the argument siteurl can lead to sql injection. The attack can be executed remotely. A high complexity level is associated with this attack...

6.3CVSS0.00239EPSS
Exploits0References5
EUVD
EUVD
•added 2026/06/29 3:0 a.m.•8 views

EUVD-2026-40026

A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation of the argument siteurl can lead to sql injection. The attack can be executed remotely. A high complexity level is associated with this attack...

6.3CVSS5.8AI score0.00239EPSS
Exploits0References5
Cvelist
Cvelist
•added 2026/06/29 3:0 a.m.•41 views

CVE-2026-13529 YzmCMS index.php sql injection

A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation of the argument siteurl can lead to sql injection. The attack can be executed remotely. A high complexity level is associated with this attack...

6.3CVSS0.00239EPSS
Exploits0References5
CVE
CVE
•added 2026/06/29 3:0 a.m.•18 views

CVE-2026-13529

CVE-2026-13529 : In YzmCMS (up to v7.5), a vulnerability affects an unknown function in /application/install/index.php where manipulating the siteurl parameter can cause SQL injection. The issue is exploitable remotely with high attack complexity and partial confidentiality/integrity/availability...

6.3CVSS5.8AI score0.00239EPSS
Exploits0References5
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•5 views

EUVD-2021-23198

Malware in sbrugna...

6.1CVSS6.3AI score0.00937EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•7 views

EUVD-2019-6698

Malware in sbrugna...

6.1CVSS6.2AI score0.01731EPSS
Exploits1References4
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-6699

Malware in sbrugna...

6.1CVSS6.3AI score0.01344EPSS
Exploits1References4
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•7 views

EUVD-2019-6697

Malware in sbrugna...

6.1CVSS6.3AI score0.01344EPSS
Exploits1References4
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•8 views

EUVD-2019-6696

Malware in sbrugna...

6.1CVSS6.3AI score0.01344EPSS
Exploits1References4
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•6 views

EUVD-2018-8571

Malware in sbrugna...

9.8CVSS9.5AI score0.0267EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•10 views

EUVD-2018-20573

Malware in sbrugna...

7.5CVSS7.5AI score0.01805EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•7 views

EUVD-2018-3609

Malware in sbrugna...

6.1CVSS6.3AI score0.00675EPSS
Exploits1References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•8 views

EUVD-2010-4748

Malware in sbrugna...

2.6CVSS6.4AI score0.0178EPSS
Exploits1References7
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•11 views

EUVD-2019-6695

Malware in sbrugna...

6.1CVSS6.3AI score0.0134EPSS
Exploits1References4
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•6 views

EUVD-2025-21698

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00269EPSS
Exploits1References1
NVD
NVD
•added 2025/07/16 2:15 p.m.•8 views

CVE-2025-53924

Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...

6.9CVSS0.00269EPSS
Exploits1References1
Vulnrichment
Vulnrichment
•added 2025/07/16 1:55 p.m.•3 views

CVE-2025-53924 Emlog vulnerable to stored Cross-site Scripting in links functionality

Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...

6.9CVSS5.6AI score0.00269EPSS
Exploits1References1
CVE
CVE
•added 2025/07/16 1:55 p.m.•19 views

CVE-2025-53924

Summary: CVE-2025-53924 affects Emlog up to and including pro-2.5.17. The vulnerability is a cross-site scripting (XSS) flaw in the siteurl parameter that authenticated attackers can abuse to inject arbitrary script/HTML, resulting in Stored XSS when a link is clicked. The available connected doc...

6.9CVSS5.3AI score0.00269EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
•added 2025/07/16 1:55 p.m.•9 views

CVE-2025-53924 Emlog vulnerable to stored Cross-site Scripting in links functionality

Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...

6.9CVSS0.00269EPSS
Exploits1References1
OSV
OSV
•added 2025/07/16 1:55 p.m.•5 views

CVE-2025-53924 Emlog vulnerable to stored Cross-site Scripting in links functionality

Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...

6.9CVSS5.6AI score0.00269EPSS
Exploits1References3
Rows per page
Query Builder