Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-19300

Malware in sbrugna...

7.2CVSS7AI score0.01EPSS
Exploits1References2
0day.today
0day.today
added 2018/04/05 12:0 a.m.51 views

YzmCMS 3.6 - Cross-Site Scripting Vulnerability

Exploit for php platform in category web applications Exploit Title: YzmCMS 3.6 XSS Vulnerability Exploit Author: zzw email protected Vendor Homepage: http://www.yzmcms.com/ Software Link: http://www.yzmcms.com/ Version: 3.6 CVE : CVE-2018-7653 This is a XSS vulnerability than can attack the user...

4.3CVSS0.1AI score0.08861EPSS
Exploits5
Packet Storm
Packet Storm
added 2018/04/05 12:0 a.m.49 views

YzmCMS 3.6 Cross Site Scripting

Exploit Title: YzmCMS 3.6 XSS Vulnerability Date: 2018-04-03 Exploit Author: zzw [email protected] Vendor Homepage: http://www.yzmcms.com/ Software Link: http://www.yzmcms.com/ Version: 3.6 CVE : CVE-2018-7653 This is a XSS vulnerability than can attack the users. poc:...

4.3CVSS6.4AI score0.08861EPSS
Exploits5
Prion
Prion
added 2018/03/04 7:29 p.m.14 views

Design/Logic Flaw

In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter...

4.3CVSS5.9AI score0.08861EPSS
Exploits5References3Affected Software1
NVD
NVD
added 2018/03/04 7:29 p.m.24 views

CVE-2018-7653

In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter...

6.1CVSS6AI score0.08861EPSS
Exploits5References3
Cvelist
Cvelist
added 2018/03/04 7:0 p.m.30 views

CVE-2018-7653

In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter...

6AI score0.08861EPSS
Exploits5References3
OSV
OSV
added 2018/03/01 7:29 p.m.5 views

CVE-2018-7579

\application\admin\controller\updateurls.class.php in YzmCMS 3.6 has SQL Injection via the catids array parameter to admin/updateurls/updatecategoryurl.html...

7.2CVSS5.8AI score0.01EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/03/01 6:0 p.m.24 views

CVE-2018-7579

\application\admin\controller\updateurls.class.php in YzmCMS 3.6 has SQL Injection via the catids array parameter to admin/updateurls/updatecategoryurl.html...

7.4AI score0.01EPSS
Exploits1References1
Prion
Prion
added 2018/02/26 3:29 a.m.17 views

Path traversal

YzmCMS 3.6 allows remote attackers to discover the full path via a direct request to application/install/templates/s1.php...

5CVSS5.3AI score0.02046EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2018/02/26 3:0 a.m.56 views

CVE-2018-7479

YzmCMS 3.6 is affected by CVE-2018-7479, a path-disclosure/info-disclosure vulnerability. A remote attacker can discover the full server path by issuing a direct request to application/install/templates/s1.php. The issue is categorized as information disclosure with impact limited to confidential...

5.3CVSS5.3AI score0.02046EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2018/02/26 3:0 a.m.19 views

CVE-2018-7479

YzmCMS 3.6 allows remote attackers to discover the full path via a direct request to application/install/templates/s1.php...

5.3AI score0.02046EPSS
Exploits1References2
Rows per page
Query Builder