Lucene search
K

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:36 p.m.6 views

CVE-2023-49490

XunRuiCMS v4.5.5 was discovered to contain a reflective cross-site scripting XSS vulnerability via the component /admin.php...

6.1CVSS6.2AI score0.00446EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-21810

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00495EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2022-35251

Malicious code in bioql PyPI...

7.2CVSS7.1AI score0.00924EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:57 a.m.9 views

CVE-2024-24389

A cross-site scripting XSS vulnerability in XunRuiCMS up to v4.6.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Add Column Name parameter...

6.1CVSS5.8AI score0.00308EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:38 a.m.8 views

CVE-2024-24388

Cross-site scripting XSS vulnerability in XunRuiCMS versions v4.6.2 and before, allows remote attackers to obtain sensitive information via crafted malicious requests to the background login...

6.1CVSS5.8AI score0.00495EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:48 p.m.8 views

CVE-2022-30037

XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion, allows attackers to execute arbitrary php code, via the add function in cron.php...

7.2CVSS7.7AI score0.00924EPSS
Exploits1References1
OSV
OSV
added 2025/03/09 10:31 p.m.5 views

CVE-2025-2131 dayrui XunRuiCMS Friendly Links cross site scripting

A vulnerability was found in dayrui XunRuiCMS up to 4.6.3. It has been rated as problematic. This issue affects some unknown processing of the component Friendly Links Handler. The manipulation of the argument Website Address leads to cross site scripting. The attack may be initiated remotely. Th...

4.8CVSS3.7AI score0.00281EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2024/04/15 12:0 a.m.8 views

PT-2024-24170 · Xunruicms · Xunruicms

Name of the Vulnerable Software and Affected Versions: Xunruicms versions 4.6.3 and before Description: A Cross Site Scripting XSS issue allows a remote attacker to execute arbitrary code via the Security.php file in the catalog XunRuiCMSdayruiFcmsLibrary. This enables the attacker to perform...

6.1CVSS6.3AI score0.00583EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2023/12/11 12:0 a.m.11 views

CVE-2023-49490

XunRuiCMS v4.5.5 was discovered to contain a reflective cross-site scripting XSS vulnerability via the component /admin.php...

6.2AI score0.00446EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/09/26 12:0 a.m.3 views

CVE-2021-38243

xunruicms up to v4.5.1 was discovered to contain a remote code execution RCE vulnerability in /index.php. This vulnerability allows attackers to execute arbitrary code via a crafted GET request...

9.9AI score0.01298EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/03/23 12:0 a.m.7 views

CVE-2022-30037

XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion, allows attackers to execute arbitrary php code, via the add function in cron.php...

7.4AI score0.00924EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/19 4:34 p.m.26 views

CVE-2022-36224

XunRuiCMS V4.5.6 is vulnerable to Cross Site Request Forgery CSRF...

8.9AI score0.00394EPSS
Exploits1References1
Rows per page
Query Builder