48 matches found
CVE-2026-2861
A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...
CVE-2026-2861
A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...
CVE-2026-2861
A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...
CVE-2026-2861 Foswiki Changes/Viewfile/Oops information disclosure
A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...
CVE-2026-2861 Foswiki Changes/Viewfile/Oops information disclosure
A vulnerability was detected in Foswiki up to 2.1.10. The affected element is an unknown function of the component Changes/Viewfile/Oops. The manipulation results in information disclosure. It is possible to launch the attack remotely. The exploit is now public and may be used. Upgrading to versi...
CVE-2026-2861
The CVE-2026-2861 entry affects Foswiki up to version 2.1.10, specifically the Changes/Viewfile/Oops component. The vulnerability arises from an unknown function that can lead to information disclosure and can be exploited remotely. Public exploit availability is indicated, with remediation via u...
Foswiki 访问控制错误漏洞
Foswiki is a Wiki software developed in the Perl language. It is a truly free and open-source platform for creating user-defined applications, suitable for both public and corporate environments. Foswiki versions 2.1.10 and earlier contained an access control vulnerability, which stemmed from...
PT-2026-21359
Name of the Vulnerable Software and Affected Versions Foswiki versions prior to 2.1.11 Description A flaw exists in Foswiki that allows information disclosure. The issue is located within an unknown function of the Changes/Viewfile/Oops component. This can be exploited remotely. The exploit is...
CVE-2026-1107
A weakness has been identified in EyouCMS up to 1.7.1/5.0. Impacted is the function checkuserinfo of the file Diyajax.php of the component Member Avatar Handler. Executing a manipulation of the argument viewfile can lead to unrestricted upload. The attack may be performed from remote. The exploit...
CVE-2026-1107
A weakness has been identified in EyouCMS up to 1.7.1/5.0. Impacted is the function checkuserinfo of the file Diyajax.php of the component Member Avatar Handler. Executing a manipulation of the argument viewfile can lead to unrestricted upload. The attack may be performed from remote. The exploit...
CVE-2026-1107
A weakness has been identified in EyouCMS up to 1.7.1/5.0. Impacted is the function checkuserinfo of the file Diyajax.php of the component Member Avatar Handler. Executing a manipulation of the argument viewfile can lead to unrestricted upload. The attack may be performed from remote. The exploit...
CVE-2026-1107
A weakness has been identified in EyouCMS up to 1.7.1/5.0. Impacted is the function checkuserinfo of the file Diyajax.php of the component Member Avatar Handler. Executing a manipulation of the argument viewfile can lead to unrestricted upload. The attack may be performed from remote. The exploit...
EyouCMS code-related vulnerabilities
EyouCMS is an open-source content management system CMS developed by Eyou Corporation in China, based on ThinkPHP. Versions of EyouCMS 1.7.1/5.0 and earlier have code vulnerabilities. These vulnerabilities stem from incorrect handling of the viewfile parameter in the checkuserinfo function of the...
MiracleLinux 3 : resin-3.1.9-1AXS3 (AXSA:2009-48:01)
The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2009-48:01 advisory. Resin Open Source provides JSP, Servlet, and EJB functionality under the GPL license. Fixed bugs: CVE-2008-2462 Cross-site scripting XSS vulnerability in the...
EUVD-2004-2339
Malware in sbrugna...
EUVD-2006-2438
Malware in sbrugna...
Simple forum forum_viewfile.php file SQL Injection Vulnerability
Simple forum is a simple forum. Simple forum suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Name in the file /forumviewfile.php. An attacker can exploit this vulnerability to execute illegal SQL commands...
CVE-2025-6846
A vulnerability classified as critical has been found in code-projects Simple Forum 1.0. This affects an unknown part of the file /forumviewfile.php. The manipulation of the argument Name leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...
Code-Projects Simple Forum 注入漏洞
Simple forum is a simple forum. Simple forum suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Name in the file /forumviewfile.php. An attacker can exploit this vulnerability to execute illegal SQL commands...
PT-2024-40438 · Unknown · Htmleditorfield Toolbar
Name of the Vulnerable Software and Affected Versions: HtmlEditorField Toolbar affected versions not specified Description: The issue concerns the "Add from URL" functionality, which does not properly sanitize URLs on the server side. Specifically, the HtmlEditorField Toolbar action viewfile is...