50 matches found
CVE-2024-39203
A cross-site scripting XSS vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
EUVD-2021-28866
Malicious code in bioql PyPI...
EUVD-2024-33148
Malicious code in bioql PyPI...
EUVD-2023-49848
Malicious code in bioql PyPI...
CVE-2024-10479
A vulnerability, which was classified as problematic, was found in LinZhaoguan pb-cms up to 2.0.1. Affected is an unknown function of the file /adminthemes of the component Theme Management Module. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
CVE-2024-28713
An issue in Mblog Blog system v.3.5.0 allows an attacker to execute arbitrary code via a crafted file to the theme management feature...
CVE-2024-51229
Cross Site Scripting vulnerability in LinZhaoguan pb-cms v.2.0 allows a remote attacker to execute arbitrary code via the theme management function...
CVE-2023-45556
Cross Site Scripting vulnerability in Mybb Mybb Forums v.1.8.33 allows a local attacker to execute arbitrary code via the theme Name parameter in the theme management component...
CVE-2024-51229
Cross Site Scripting vulnerability in LinZhaoguan pb-cms v.2.0 allows a remote attacker to execute arbitrary code via the theme management function...
CVE-2024-51229
Cross Site Scripting vulnerability in LinZhaoguan pb-cms v.2.0 allows a remote attacker to execute arbitrary code via the theme management function...
CVE-2024-51229
Cross Site Scripting vulnerability in LinZhaoguan pb-cms v.2.0 allows a remote attacker to execute arbitrary code via the theme management function...
PT-2025-2898 · Linzhaoguan · Linzhaoguan Pb-Cms
Name of the Vulnerable Software and Affected Versions: LinZhaoguan pb-cms version 2.0 Description: The issue allows a remote attacker to execute arbitrary code via the theme management function. This is a result of a Cross Site Scripting vulnerability. Recommendations: For LinZhaoguan pb-cms...
pb-cms 安全漏洞
pb-cms waterfall content management system is a content management system by LinZhaoguan Personal Developer. A security vulnerability exists in pb-cms version v.2.0. A remote attacker can exploit the vulnerability to execute arbitrary code via the theme management feature...
CVE-2024-10479
A vulnerability, which was classified as problematic, was found in LinZhaoguan pb-cms up to 2.0.1. Affected is an unknown function of the file /adminthemes of the component Theme Management Module. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
CVE-2024-10479
A vulnerability, which was classified as problematic, was found in LinZhaoguan pb-cms up to 2.0.1. Affected is an unknown function of the file /adminthemes of the component Theme Management Module. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
CVE-2024-10479
CVE-2024-10479 affects LinZhaoguan pb-cms up to version 2.0.1, specifically a vulnerability in the Theme Management Module’s file /admin#themes that enables cross-site scripting. The flaw can be exploited remotely and the exploit has been disclosed publicly. Affected function/details are not full...
CVE-2024-10479 LinZhaoguan pb-cms Theme Management Module admin#themes cross site scripting
A vulnerability, which was classified as problematic, was found in LinZhaoguan pb-cms up to 2.0.1. Affected is an unknown function of the file /adminthemes of the component Theme Management Module. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The...
PT-2024-16307 · Linzhaoguan · Linzhaoguan Pb-Cms
Name of the Vulnerable Software and Affected Versions: LinZhaoguan pb-cms versions up to 2.0.1 Description: A problematic issue was found in the Theme Management Module of the affected software, specifically in an unknown function of the file /adminthemes. This issue leads to cross-site scripting...
CVE-2024-39203
A cross-site scripting XSS vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...
CVE-2024-39203
A cross-site scripting XSS vulnerability in the Backend Theme Management module of Z-BlogPHP v1.7.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload...