yungoucms.com Cross Site Scripting vulnerability OBB-2458141

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

SQL Injection Vulnerability in YunGouCMS v7.1

YunGouCMS is a website builder provided by Taurus Networks for the cloud purchasing model. YunGouCMS v7.1 suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in YunGouCMS shopid

YunGouCMS is a website builder provided by Taurus Networks for the cloud purchasing model. YunGouCMS suffers from a SQL injection vulnerability. The lack of filtering of user input in the shopid parameter allows an attacker to exploit the vulnerability to obtain sensitive database information...

yungoucms system latest SQL injection-vulnerability warning-the black bar safety net

Official website : http://www.yungoucms.com/ demo site: http://www.yungoucms.cn/ Product search you can build a SQL statement that is! http://www.yungoucms.cn/?/stag/ publicfunction tag $search =$this-segment4; if!$ searchmessage"enter search keyword"; $search = urldecode$search; $search =...

yungoucmsSQL注入漏洞

简要描述： 官网 : http://www.yungoucms.com/ 演示站: http://www.yungoucms.cn/ 商品搜索可以构建SQL语句！ http://www.yungoucms.cn/?/stag/ public function tag $search =$this-segment4; if!$searchmessage"输入搜索关键字"; $search = urldecode$search; $search = htmlspecialchars$search; if!isutf8$search $search = iconv"GBK", "UTF-8",...