Lucene search
K

24 matches found

EUVD
EUVD
added 2026/06/02 12:15 a.m.12 views

EUVD-2026-33855

A weakness has been identified in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is an unknown function of the file src/main/java/com/zhiliao/module/web/system/ScheduleJobController.java of the component Task Scheduling Management Module. Executing a manipulation can...

4.8CVSS4.1AI score0.0021EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/30 9:0 p.m.7 views

CVE-2026-10153

A flaw has been found in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is the function Search of the file org/springframework/cache/support/AbstractCacheManager.java. This manipulation of the argument s causes cross site scripting. Remote exploitation of the attack i...

5.3CVSS4.4AI score0.0028EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/30 9:0 p.m.28 views

CVE-2026-10153 westboy CicadasCMS AbstractCacheManager.java search cross site scripting

A flaw has been found in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. Impacted is the function Search of the file org/springframework/cache/support/AbstractCacheManager.java. This manipulation of the argument s causes cross site scripting. Remote exploitation of the attack i...

5.3CVSS0.0028EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/01/07 9:17 a.m.8 views

CVE-2025-1556

A vulnerability, which was classified as problematic, has been found in westboy CicadasCMS 1.0. This issue affects some unknown processing of the file /system of the component Template Management. The manipulation leads to deserialization. The attack may be initiated remotely. The exploit has bee...

9.8CVSS6.8AI score0.0061EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/06 3:17 p.m.9 views

CVE-2025-11289

A vulnerability was determined in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. The impacted element is the function Save of the file src/main/java/com/zhiliao/common/template/TemplateFileServiceImpl.java of the component Template Management Page. This manipulation causes cro...

5.4CVSS5.8AI score0.00254EPSS
Exploits1References1
OSV
OSV
added 2025/10/05 11:16 a.m.4 views

CVE-2025-11289

A vulnerability was determined in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab. The impacted element is the function Save of the file src/main/java/com/zhiliao/common/template/TemplateFileServiceImpl.java of the component Template Management Page. This manipulation causes cro...

5.4CVSS4.3AI score0.00254EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-11939

Malicious code in bioql PyPI...

7.2CVSS5AI score0.05884EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-31431

Malicious code in bioql PyPI...

4.8CVSS4AI score0.00272EPSS
Exploits1References5
CVE
CVE
added 2025/09/27 4:32 p.m.14 views

CVE-2025-11069

CVE-2025-11069 (westboy CicadasCMS 1.0) affects the Add Department Handler: the vulnerability arises from manipulating the Name argument in the file /system/org/save, enabling cross-site scripting. The issue is exploitable remotely and, per multiple sources, the exploit has been publicly disclose...

4.8CVSS5.4AI score0.00272EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/04/19 6:0 p.m.27 views

CVE-2025-3816 westboy CicadasCMS Scheduled Task save os command injection

A vulnerability classified as critical was found in westboy CicadasCMS 2.0. This vulnerability affects unknown code of the file /system/schedule/save of the component Scheduled Task Handler. The manipulation leads to os command injection. The attack can be initiated remotely. The exploit has been...

5.8CVSS0.05884EPSS
Exploits1References4
CVE
CVE
added 2025/04/19 6:0 p.m.70 views

CVE-2025-3816

The CVE-2025-3816 entry concerns westboy CicadasCMS 2.0, specifically the Scheduled Task Handler’s /system/schedule/save file. The vulnerability enables os command injection and can be triggered remotely (network vector). Public exploitation details exist across multiple sources, and the issue is...

7.2CVSS5.5AI score0.05884EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/19 12:0 a.m.6 views

PT-2025-17386 · Westboy · Cicadascms

Name of the Vulnerable Software and Affected Versions: westboy CicadasCMS version 2.0 Description: A critical issue was found in the Scheduled Task Handler component, specifically affecting the /system/schedule/save file. This issue leads to os command injection and can be initiated remotely. The...

5.8CVSS5AI score0.05884EPSS
Exploits1References10
RedhatCVE
RedhatCVE
added 2025/04/16 9:13 p.m.7 views

CVE-2025-3585

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /upload/ of the component JSP Parser. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been...

8.8CVSS7AI score0.0045EPSS
Exploits1References1
OSV
OSV
added 2025/04/14 6:15 p.m.4 views

CVE-2025-3585

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /upload/ of the component JSP Parser. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been...

8.8CVSS5.5AI score0.0045EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/04/14 6:0 p.m.22 views

CVE-2025-3585 westboy CicadasCMS JSP Parser upload unrestricted upload

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /upload/ of the component JSP Parser. The manipulation of the argument File leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS0.0045EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/03/22 8:0 p.m.26 views

CVE-2025-2625 westboy CicadasCMS page sql injection

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /system/cms/content/page. The manipulation of the argument orderField/orderDirection leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

6.5CVSS0.00327EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/22 8:0 p.m.11 views

CVE-2025-2625 westboy CicadasCMS page sql injection

A vulnerability classified as critical has been found in westboy CicadasCMS 1.0. This affects an unknown part of the file /system/cms/content/page. The manipulation of the argument orderField/orderDirection leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

6.5CVSS7.7AI score0.00327EPSS
Exploits1References4
CVE
CVE
added 2025/03/22 7:0 p.m.61 views

CVE-2025-2624

CVE-2025-2624 affects westboy CicadasCMS 1.0. The vulnerability arises in a function under /system/cms/content/save where manipulation of the argument content/fujian/laiyuan leads to SQL injection. The issue is exploitable remotely and the exploit has been disclosed publicly. Impact is described ...

7.5CVSS7.4AI score0.00325EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/03/22 7:0 p.m.18 views

CVE-2025-2624 westboy CicadasCMS save sql injection

A vulnerability was found in westboy CicadasCMS 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/cms/content/save. The manipulation of the argument content/fujian/laiyuan leads to sql injection. The attack may be launched remotely. The...

6.5CVSS0.00325EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/22 7:0 p.m.9 views

CVE-2025-2624 westboy CicadasCMS save sql injection

A vulnerability was found in westboy CicadasCMS 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /system/cms/content/save. The manipulation of the argument content/fujian/laiyuan leads to sql injection. The attack may be launched remotely. The...

6.5CVSS7.5AI score0.00325EPSS
Exploits1References4
Rows per page
Query Builder