5 matches found
CVE-2023-34657
A stored cross-site scripting XSS vulnerability in Eyoucms v1.6.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the webrecordnum parameter...
CVE-2023-34657
A stored cross-site scripting XSS vulnerability in Eyoucms v1.6.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the webrecordnum parameter...
CVE-2023-34657
A stored cross-site scripting XSS vulnerability in Eyoucms v1.6.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the webrecordnum parameter...
PT-2023-24975 · Eyoucms · Eyoucms
Name of the Vulnerable Software and Affected Versions: Eyoucms version 1.6.2 Description: A stored cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the web recordnum parameter. This enables attackers to potentially...
CVE-2023-34657
CVE-2023-34657 affects Eyoucms v1.6.2 with a stored XSS vulnerability in the web_recordnum parameter. Attackers can inject arbitrary web scripts/HTML to be executed in the victim’s browser, potentially manipulating the site or accessing user data. The available connected documents consistently de...