5 matches found
EUVD-2018-4975
Malware in sbrugna...
EUVD-2018-20371
Malware in sbrugna...
EUVD-2018-11097
Malware in sbrugna...
CVE-2018-13025
protected/apps/admin/controller/photoController.php in YXcms 1.4.7 allows remote attackers to delete arbitrary files via the index.php?r=admin/photo/delpic picname parameter...
Cross-site scripting vulnerability in yxcms Referer parameter
YXcms is a website management system based on PHP+MySql with a lightweight MVC design model. A cross-site scripting vulnerability exists in the Referer parameter on the yxcms\protected\apps\member\controller\indexController.php page in yxcms V1.4. Because the program does not filter the...