MuYuCMS 路径遍历漏洞

MuYuCMS is a lightweight open-source content management system developed by MuYuCMS. Version 2.7 of MuYuCMS has a path traversal vulnerability, which stems from incorrect handling of parameters in the file application/admin/controller/Template.php, specifically parameter temn/tp, which may lead t...

CVE-2025-7887 Zavy86 WikiDocs template.inc.php cross site scripting

A vulnerability has been found in Zavy86 WikiDocs up to 1.0.78 and classified as problematic. This vulnerability affects unknown code of the file template.inc.php. The manipulation of the argument path leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

CVE-2025-7887

CVE-2025-7887 affects Zavy86 WikiDocs up to version 1.0.78. The vulnerability is triggered by manipulation of the path argument in template.inc.php, enabling cross-site scripting via remote access. Multiple sources confirm the issue and that the exploit has been disclosed publicly. Impact is limi...

CVE-2023-45134 XWiki Platform XSS vulnerability from account in the create page form via template provider

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. org.xwiki.platform:xwiki-platform-web starting in version 3.1-milestone-1 and prior to 13.4-rc-1, org.xwiki.platform:xwiki-platform-web-templates prior to versions 14.10.2 and 15.5-rc-1, and...

Multiple Vulnerabilities in EasyService Billing 'template_().php'

EasyService Billing is a PHP-based service-oriented consumer business management system . SQL injection and cross-site scripting vulnerabilities exist in EasyService Billing 'template.php'. The vulnerabilities can be exploited to obtain sensitive database information, execute arbitrary code in th...