CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Vulnrichment•added 2025/09/23 12:0 a.m.•3 views

CVE-2025-56304

Cross-site scripting XSS vulnerability in YzmCMS thru 7.3 via the referer header in the register page...

5.8AI score0.00035EPSS

Exploits0References3

ATTACKERKB•added 2022/01/28 9:15 p.m.•3 views

CVE-2022-23887

YzmCMS v6.3 was discovered to contain a Cross-Site Request Forgery CSRF which allows attackers to arbitrarily delete user accounts via /admin/adminmanage/delete...

6.5CVSS6.6AI score0.00229EPSS

Exploits1References2

CNNVD•added 2022/01/28 12:0 a.m.•2 views

YzmCMS 跨站请求伪造漏洞

Yzmcms is an open source CMS Content Management System for Yzmcms individual developers. yzmCMS v6.3 has a cross-site request forgery vulnerability that allows attackers to arbitrarily delete user accounts via /admin/adminmanage/delete. No details of the vulnerability are currently available...

6.5CVSS5.4AI score0.00229EPSS

Exploits1References1

CNVD•added 2020/07/20 12:0 a.m.•2 views

SQL Injection Vulnerability in YzmCMS Backend or***.cl***.php

YzmCMS is a lightweight and open source content management system based on PHP+Mysql architecture, running on Linux, Windows, MacOSX, Solaris and other platforms. A SQL injection vulnerability exists in YzmCMS backend or.cl.php. Attackers can use the vulnerability to obtain sensitive information ...

7.7AI score

Exploits0