CVE-2026-38669

wCMS v.1.4 is vulnerable to Cross Site Scripting XSS when creating a new blog...

CVE-2026-38669

CVE-2026-38669 affects wCMS v1.4 and is described as a Cross Site Scripting (XSS) vulnerability when creating a new blog. The connected sources confirm the product/version and the XSS impact, with a CVSS v3.1 base score of 6.1 (Medium) and user interaction required. The documents do not provide r...

CVE-2026-38669

wCMS v.1.4 is vulnerable to Cross Site Scripting XSS when creating a new blog...

CVE-2026-38669

wCMS v.1.4 is vulnerable to Cross Site Scripting XSS when creating a new blog...

CVE-2023-31689

In Wcms 0.3.2, an attacker can send a crafted request from a vulnerable web application backend server /wcms/wex/html.php via the finish parameter and the textAreaCode parameter. It can write arbitrary strings into custom file names and upload any files, and write malicious code to execute script...

CVE-2020-24135

A Reflected Cross Site Scripting XSS Vulnerability was discovered in Wcms 0.3.2, which allows remote attackers to inject arbitrary web script and HTML via the type parameter to wex/cssjs.php...

CVE-2020-24137

Directory traversal vulnerability in Wcms 0.3.2 allows an attacker to read arbitrary files on the server that is running an application via the path parameter to wex/cssjs.php...

CVE-2020-24138

Cross Site Scripting XSS vulnerability in wcms 0.3.2 allows remote attackers to inject arbitrary web script and HTML via the pagename parameter to wex/html.php...

EUVD-2020-16875

Malware in sbrugna...

EUVD-2020-11798

Malware in sbrugna...

EUVD-2005-4483

Malware in sbrugna...

EUVD-2020-16872

Malware in sbrugna...

EUVD-2020-16871

Malware in sbrugna...

EUVD-2006-5610

Malware in sbrugna...

EUVD-2019-3055

Malware in sbrugna...

EUVD-2019-5482

Malware in sbrugna...

EUVD-2020-16874

Malware in sbrugna...

EUVD-2020-16873

Malware in sbrugna...

EUVD-2025-15031

Malicious code in bioql PyPI...

EUVD-2024-49448

Malicious code in bioql PyPI...