69 matches found
EUVD-2020-4992
Malware in sbrugna...
EUVD-2020-4991
Malware in sbrugna...
Ulicms 2023.1 - create admin user via mass assignment Vulnerability
Exploit Title: Ulicms 2023.1 - create admin user via mass assignment Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: create admin user via mass assignment Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
Ulicms 2023.1 Create Administrator
Exploit Title: Ulicms 2023.1 - create admin user via mass assignment Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: create admin user via mass assignment Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
Ulicms 2023.1 - create admin user via mass assignment
Exploit Title: Ulicms 2023.1 - create admin user via mass assignment Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: create admin user via mass assignment Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
Ulicms 2023.1 sniffing-vicuna - Remote Code Execution Vulnerability
Exploit Title: Ulicms-2023.1 sniffing-vicuna - Remote Code Execution RCE Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: RCE Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link: https://www.ulicms.de/content/files/Releases/2023.1/ulicms-2023.1-sniffing-vicuna-full.zip Date o...
Ulicms-2023.1 sniffing-vicuna - Stored Cross-Site Scripting (XSS)
Exploit Title: Ulicms-2023.1 sniffing-vicuna - Stored Cross-Site Scripting XSS Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: Stored Xss Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
Ulicms-2023.1-sniffing-vicuna - Privilege escalation
Exploit Title: Ulicms 2023.1 sniffing-vicuna - Privilege escalation Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: Privilege escalation Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
Ulicms-2023.1 sniffing-vicuna - Remote Code Execution (RCE)
Exploit Title: Ulicms-2023.1 sniffing-vicuna - Remote Code Execution RCE Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: RCE Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link: https://www.ulicms.de/content/files/Releases/2023.1/ulicms-2023.1-sniffing-vicuna-full.zip Date o...
Ulicms 2023.1 sniffing-vicuna - Stored Cross-Site Scripting Vulnerability
Exploit Title: Ulicms-2023.1 sniffing-vicuna - Stored Cross-Site Scripting XSS Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: Stored Xss Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
UliCMS 2023-1 Sniffing-Vicuna Cross Site Scripting
Exploit Title: Ulicms-2023.1 sniffing-vicuna - Stored Cross-Site Scripting XSS Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: Stored Xss Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link:...
UliCMS 2023-1 Sniffing-Vicuna Shell Upload
Exploit Title: Ulicms-2023.1 sniffing-vicuna - Remote Code Execution RCE Application: Ulicms Version: 2023.1-sniffing-vicuna Bugs: RCE Technology: PHP Vendor URL: https://en.ulicms.de/ Software Link: https://www.ulicms.de/content/files/Releases/2023.1/ulicms-2023.1-sniffing-vicuna-full.zip Date o...
UliCMS Cross-Site Scripting Vulnerability (CNVD-2020-35500)
UliCMS is an open source content management system CMS. The system supports features such as access control and WYSIWYG editing. A cross-site scripting vulnerability exists in UliCMS versions prior to 2020.2. The vulnerability stems from a lack of proper validation of client-side data by the WEB...
UliCMS Cross-Site Scripting Vulnerability (CNVD-2020-35501)
UliCMS is an open source content management system CMS. The system supports features such as access control and WYSIWYG editing. A cross-site scripting vulnerability exists in UliCMS versions prior to 2020.2. The vulnerability stems from a lack of proper validation of client-side data by the WEB...
CVE-2020-12703
UliCMS before 2020.2 has XSS during PackageController uninstall...
CVE-2020-12703
UliCMS before 2020.2 has XSS during PackageController uninstall...
CVE-2020-12704
UliCMS before 2020.2 has PageController stored XSS...
CVE-2020-12704
UliCMS before 2020.2 has PageController stored XSS...
Cross site scripting
UliCMS before 2020.2 has PageController stored XSS...
Design/Logic Flaw
UliCMS before 2020.2 has XSS during PackageController uninstall...