4 matches found
CVE-2022-43146
An arbitrary file upload vulnerability in the image upload function of Canteen Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...
CVE-2025-29015
Code Astro Internet Banking System 2.0.0 is vulnerable to Cross Site Scripting XSS via the name parameter in /admin/pagesaccount.php...
YUNUCMS cross-site scripting vulnerability (CNVD-2019-00565)
YUNUCMS is China Yunyou YUNU network technology company of a set of open source enterprise station building content management system CMS. YUNUCMS1.1.8 version of the app/admin/controller/System.php file there is a cross-site scripting vulnerability , a remote attacker can write to the sys.php fi...
CScms Cross-Site Request Forgery Vulnerability
CScms is a content management system CMS developed on a CI framework. A cross-site scripting vulnerability exists in the plugins/sys/admin/Sys.php file in CScms version 4.1. A remote attacker can exploit this vulnerability to change the administrator name and password with the help of the...