23 matches found
EUVD-2020-13784
Malware in sbrugna...
EUVD-2022-39284
Malicious code in bioql PyPI...
CVE-2022-36579
Wellcms 2.2.0 is vulnerable to Cross Site Request Forgery CSRF...
CVE-2020-21005
WellCMS 2.0 beta3 is vulnerable to File Upload. A user can log in to the CMS background and upload a picture. Because the upload file type is controllable, the user can modify the upload file type to get webshell...
WellCMS Cross-site Request Forgery Vulnerability
WellCMS is an open source, billion-load, mobile-leaning, lightweight, super-responsive, high-load CMS that is the best choice for large data volumes and high concurrent access websites. Users - Create User - Add New User does not sufficiently verify that the request is from a trusted user. An...
CVE-2022-36579
Wellcms 2.2.0 is vulnerable to Cross Site Request Forgery CSRF...
CVE-2022-36579
Wellcms 2.2.0 is vulnerable to Cross Site Request Forgery CSRF...
CVE-2022-36579
Wellcms 2.2.0 is vulnerable to Cross Site Request Forgery CSRF...
Cross site request forgery (csrf)
Wellcms 2.2.0 is vulnerable to Cross Site Request Forgery CSRF...
CVE-2022-36579
CVE-2022-36579 affects Wellcms 2.2.0 and is described as a Cross-Site Request Forgery (CSRF) vulnerability. The NVD entry assigns CVSSv3.1 base score 8.8 (HIGH) with an attack vector of Network, low attack complexity, privileges required NONE, and user interaction required, indicating a high-impa...
CVE-2022-36579
Wellcms 2.2.0 is vulnerable to Cross Site Request Forgery CSRF...
WellCMS 跨站请求伪造漏洞
WellCMS is an open source, billion-load, mobile-leaning, lightweight, super-responsive, high-load CMS that is the best choice for large data volumes and high concurrent access websites. Users - Create User - Add New User does not sufficiently verify that the request is from a trusted user. An...
PT-2022-23483 · Wellcms · Wellcms
Name of the Vulnerable Software and Affected Versions: Wellcms version 2.2.0 Description: The issue is related to Cross Site Request Forgery CSRF, which is a type of attack that tricks a user into performing unintended actions on a web application. Recommendations: For Wellcms version 2.2.0, as a...
WellCMS File Upload Vulnerability
WellCMS is an open source with a billion load, tend to mobile, lightweight, with ultra-fast response ability of high load CMS, is a large amount of data, high concurrency access to the site's best choice of light CMS. has a safe, efficient, stable, ultra-fast speed, super load characteristics. A...
CVE-2020-21005
WellCMS 2.0 beta3 is vulnerable to File Upload. A user can log in to the CMS background and upload a picture. Because the upload file type is controllable, the user can modify the upload file type to get webshell...
CVE-2020-21005
WellCMS 2.0 beta3 is vulnerable to File Upload. A user can log in to the CMS background and upload a picture. Because the upload file type is controllable, the user can modify the upload file type to get webshell...
Design/Logic Flaw
WellCMS 2.0 beta3 is vulnerable to File Upload. A user can log in to the CMS background and upload a picture. Because the upload file type is controllable, the user can modify the upload file type to get webshell...
CVE-2020-21005
WellCMS 2.0 beta3 is vulnerable to File Upload. A user can log in to the CMS background and upload a picture. Because the upload file type is controllable, the user can modify the upload file type to get webshell...
CVE-2020-21005
WellCMS 2.0 beta3 is vulnerable to a file-upload flaw where the upload file type is controllable in the CMS background, enabling an attacker to modify the file type and potentially obtain a webshell. Root cause: incomplete verification of uploaded file types. Impact: webshell capability is implie...
WellCMS 代码问题漏洞
WellCMS is an open source with a billion load, tend to mobile, lightweight, with ultra-fast response ability of high load CMS, is a large amount of data, high concurrency access to the site's best choice of light CMS. has a safe, efficient, stable, ultra-fast speed, super load characteristics. A...