85 matches found
CVE-2026-13529
A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation of the argument siteurl can lead to sql injection. The attack can be executed remotely. A high complexity level is associated with this attack...
EUVD-2026-40026
A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation of the argument siteurl can lead to sql injection. The attack can be executed remotely. A high complexity level is associated with this attack...
CVE-2026-13529 YzmCMS index.php sql injection
A vulnerability was determined in YzmCMS up to 7.5. This affects an unknown function of the file /application/install/index.php. Executing a manipulation of the argument siteurl can lead to sql injection. The attack can be executed remotely. A high complexity level is associated with this attack...
CVE-2026-13529
CVE-2026-13529 : In YzmCMS (up to v7.5), a vulnerability affects an unknown function in /application/install/index.php where manipulating the siteurl parameter can cause SQL injection. The issue is exploitable remotely with high attack complexity and partial confidentiality/integrity/availability...
EUVD-2021-23198
Malware in sbrugna...
EUVD-2019-6698
Malware in sbrugna...
EUVD-2019-6699
Malware in sbrugna...
EUVD-2019-6697
Malware in sbrugna...
EUVD-2019-6696
Malware in sbrugna...
EUVD-2018-8571
Malware in sbrugna...
EUVD-2018-20573
Malware in sbrugna...
EUVD-2018-3609
Malware in sbrugna...
EUVD-2010-4748
Malware in sbrugna...
EUVD-2019-6695
Malware in sbrugna...
EUVD-2025-21698
Malicious code in bioql PyPI...
CVE-2025-53924
Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...
CVE-2025-53924 Emlog vulnerable to stored Cross-site Scripting in links functionality
Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...
CVE-2025-53924
Summary: CVE-2025-53924 affects Emlog up to and including pro-2.5.17. The vulnerability is a cross-site scripting (XSS) flaw in the siteurl parameter that authenticated attackers can abuse to inject arbitrary script/HTML, resulting in Stored XSS when a link is clicked. The available connected doc...
CVE-2025-53924 Emlog vulnerable to stored Cross-site Scripting in links functionality
Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...
CVE-2025-53924 Emlog vulnerable to stored Cross-site Scripting in links functionality
Emlog is an open source website building system. A cross-site scripting XSS vulnerability in emlog up to and including pro-2.5.17 allows authenticated remote attackers to inject arbitrary web script or HTML via the siteurl parameter. It is possible to inject malicious code into siteurl parameter...