3 matches found
CVE-2025-63695
DzzOffice v2.3.7 and before is vulnerable to Arbitrary File Upload in /dzz/system/ueditor/php/controller.php...
VulnCheck KEV: CVE-2022-37299
An issue was discovered in Shirne CMS 1.2.0. There is a Path Traversal vulnerability which could cause arbitrary file read via /static/ueditor/php/controller.php...
YUNUCMS Arbitrary File Deletion Vulnerability
YUNUCMS is China Yunyou YUNU network technology company of a set of open source enterprise station building content management system CMS. A security vulnerability exists in the statics/ueditor/php/vendor/Local.class.php file in YUNUCMS version 1.1.5. An attacker can exploit this vulnerability by...