4 matches found
EUVD-2024-48269
Malicious code in bioql PyPI...
CVE-2024-3117
A vulnerability classified as critical was found in YouDianCMS up to 9.5.12. This vulnerability affects unknown code of the file App\Lib\Action\Admin\ChannelAction.class.php. The manipulation of the argument file leads to unrestricted upload. The attack can be initiated remotely. The exploit has...
CVE-2025-3533
CVE-2025-3533 affects YouDianCMS 9.5.21. The vulnerability is an XSS in the file /App/Tpl/Admin/Default/Channel/index.html, caused by manipulation of the argument Parent. Exploitation may be remote; the exploit has been disclosed publicly. Connected documents consistently reference this filename/...
CVE-2025-3531 YouDianCMS index.html cross site scripting
A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. This affects an unknown part of the file /App/Tpl/Admin/Default/Log/index.html. The manipulation of the argument UserName/LogType leads to cross site scripting. It is possible to initiate the attack remotely. The explo...