Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

23 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-10847

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.0038EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.5 views

EUVD-2025-10906

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.0038EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-10848

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.0038EPSS
Exploits1References5
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2024-48267

Malicious code in bioql PyPI...

6.9CVSS5.6AI score0.00698EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/23 10:21 a.m.13 views

CVE-2024-7329

A vulnerability, which was classified as critical, was found in YouDianCMS 7. Affected is an unknown function of the file /Public/ckeditor/plugins/multiimage/dialogs/imageupload.php. The manipulation of the argument files leads to unrestricted upload. It is possible to launch the attack remotely...

9.8CVSS6.8AI score0.00652EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 10:21 a.m.4 views

CVE-2024-7328

A vulnerability, which was classified as problematic, has been found in YouDianCMS 7. This issue affects some unknown processing of the file /t.php?action=phpinfo. The manipulation leads to information disclosure. The attack may be initiated remotely. The exploit has been disclosed to the public...

6.9CVSS6.4AI score0.00698EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 7:9 a.m.5 views

CVE-2024-57052

An issue in youdiancms v.9.5.20 and before allows a remote attacker to escalate privileges via the sessionID parameter in the index.php file...

9.8CVSS7.2AI score0.00468EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 10:57 p.m.5 views

CVE-2022-32301

YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the IdList parameter at /App/Lib/Action/Home/ApiAction.class.php...

9.8CVSS8.3AI score0.01002EPSS
Exploits1References1
NVD
NVDadded 2025/04/13 10:15 a.m.13 views

CVE-2025-3533

A vulnerability, which was classified as problematic, has been found in YouDianCMS 9.5.21. This issue affects some unknown processing of the file /App/Tpl/Admin/Default/Channel/index.html.Attackers. The manipulation of the argument Parent leads to cross site scripting. The attack may be initiated...

6.1CVSS0.0038EPSS
Exploits1References4
Cvelist
Cvelistadded 2025/04/13 10:0 a.m.28 views

CVE-2025-3533 YouDianCMS index.html.Attackers cross site scripting

A vulnerability, which was classified as problematic, has been found in YouDianCMS 9.5.21. This issue affects some unknown processing of the file /App/Tpl/Admin/Default/Channel/index.html.Attackers. The manipulation of the argument Parent leads to cross site scripting. The attack may be initiated...

5.3CVSS0.0038EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/04/13 10:0 a.m.6 views

CVE-2025-3533 YouDianCMS index.html.Attackers cross site scripting

A vulnerability, which was classified as problematic, has been found in YouDianCMS 9.5.21. This issue affects some unknown processing of the file /App/Tpl/Admin/Default/Channel/index.html.Attackers. The manipulation of the argument Parent leads to cross site scripting. The attack may be initiated...

5.3CVSS6AI score0.0038EPSS
Exploits1References4
NVD
NVDadded 2025/04/13 6:15 a.m.25 views

CVE-2025-3531

A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. This affects an unknown part of the file /App/Tpl/Admin/Default/Log/index.html. The manipulation of the argument UserName/LogType leads to cross site scripting. It is possible to initiate the attack remotely. The explo...

6.1CVSS0.0038EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2025/04/13 6:0 a.m.6 views

CVE-2025-3532 YouDianCMS index.html.Attackers cross site scripting

A vulnerability classified as problematic was found in YouDianCMS 9.5.21. This vulnerability affects unknown code of the file /App/Tpl/Member/Default/Order/index.html.Attackers. The manipulation of the argument OrderNumber leads to cross site scripting. The attack can be initiated remotely. The...

5.3CVSS6.2AI score0.0038EPSS
Exploits1References4
CVE
CVEadded 2025/04/13 6:0 a.m.66 views

CVE-2025-3532

CVE-2025-3532 (YouDianCMS 9.5.21) : A cross-site scripting vulnerability exists in unknown code of /App/Tpl/Member/Default/Order/index.html, triggered by manipulating the OrderNumber parameter. The issue appears to allow remote exploitation and has publicly disclosed exploits. Multiple connected ...

6.1CVSS4.4AI score0.0038EPSS
Exploits1References4Affected Software1
Cvelist
Cvelistadded 2025/04/13 5:31 a.m.31 views

CVE-2025-3531 YouDianCMS index.html cross site scripting

A vulnerability classified as problematic has been found in YouDianCMS 9.5.21. This affects an unknown part of the file /App/Tpl/Admin/Default/Log/index.html. The manipulation of the argument UserName/LogType leads to cross site scripting. It is possible to initiate the attack remotely. The explo...

5.3CVSS0.0038EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/04/13 12:0 a.m.7 views

PT-2025-16179 · Unknown · Youdiancms

Name of the Vulnerable Software and Affected Versions: YouDianCMS version 9.5.21 Description: A vulnerability has been found in YouDianCMS, affecting some unknown processing of the file /App/Tpl/Admin/Default/Channel/index.html. The manipulation of the argument Parent leads to cross-site scriptin...

6.1CVSS4.2AI score0.0038EPSS
Exploits1References13
Positive Technologies
Positive Technologiesadded 2025/04/13 12:0 a.m.5 views

PT-2025-16177 · Unknown · Youdiancms

Name of the Vulnerable Software and Affected Versions: YouDianCMS version 9.5.21 Description: A vulnerability was found in YouDianCMS, affecting unknown code of the file /App/Tpl/Member/Default/Order/index.html. The manipulation of the OrderNumber argument leads to cross-site scripting. The attac...

6.1CVSS4.3AI score0.0038EPSS
Exploits1References14
Positive Technologies
Positive Technologiesadded 2025/04/13 12:0 a.m.7 views

PT-2025-16175 · Unknown · Youdiancms

Name of the Vulnerable Software and Affected Versions: YouDianCMS version 9.5.21 Description: A vulnerability has been found in YouDianCMS, affecting an unknown part of the file /App/Tpl/Admin/Default/Log/index.html. The manipulation of the argument UserName/LogType leads to cross-site scripting...

6.1CVSS4.2AI score0.0038EPSS
Exploits1References14
Vulnrichment
Vulnrichmentadded 2025/01/27 12:0 a.m.5 views

CVE-2024-57052

An issue in youdiancms v.9.5.20 and before allows a remote attacker to escalate privileges via the sessionID parameter in the index.php file...

9.5AI score0.00468EPSS
Exploits0References1
CVE
CVEadded 2025/01/27 12:0 a.m.65 views

CVE-2024-57052

Summary (CVE-2024-57052) YouDianCMS (v9.5.20 and earlier) is affected by a privilege-escalation issue via the sessionID parameter in index.php. Root cause involves improper session handling that can allow remote attackers to gain higher privileges. A patch/version with fix not publicly documented...

9.8CVSS7.2AI score0.00468EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder