Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:45 p.m.9 views

CVE-2020-19950

A cross-site scripting XSS vulnerability in the /banner/add.html component of YzmCMS v5.3 allows attackers to execute arbitrary web scripts or HTML...

4.8CVSS6AI score0.0057EPSS
Exploits1
NVD
NVD
added 2021/09/23 8:15 p.m.23 views

CVE-2020-19949

A cross-site scripting XSS vulnerability in the /link/add.html component of YzmCMS v5.3 allows attackers to execute arbitrary web scripts or HTML...

4.8CVSS0.0057EPSS
Exploits1References1
Prion
Prion
added 2021/09/23 8:15 p.m.17 views

Cross site scripting

A cross-site scripting XSS vulnerability in the /link/add.html component of YzmCMS v5.3 allows attackers to execute arbitrary web scripts or HTML...

3.5CVSS5AI score0.0057EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/09/23 7:46 p.m.22 views

CVE-2020-19949

A cross-site scripting XSS vulnerability in the /link/add.html component of YzmCMS v5.3 allows attackers to execute arbitrary web scripts or HTML...

5.1AI score0.0057EPSS
Exploits1References1
CVE
CVE
added 2021/09/23 7:46 p.m.55 views

CVE-2020-19949

YzmCMS v5.3 contains a cross-site scripting (XSS) vulnerability in the /link/add.html component. The issue allows attackers to execute arbitrary web scripts or HTML. The CVE entry is supported by multiple sources (NVD, Red Hat, CNVD, OSV, CNVD) that describe the same flaw. The provided connected ...

4.8CVSS5AI score0.0057EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/09/26 4:15 p.m.25 views

CVE-2019-16532

An HTTP Host header injection vulnerability exists in YzmCMS V5.3. A malicious user can poison a web cache or trigger redirections...

6.1CVSS6.4AI score0.01221EPSS
Exploits1References2
OSV
OSV
added 2019/09/26 4:15 p.m.24 views

CVE-2019-16532

An HTTP Host header injection vulnerability exists in YzmCMS V5.3. A malicious user can poison a web cache or trigger redirections...

6.1CVSS7.1AI score
Exploits0References2
Prion
Prion
added 2019/09/26 4:15 p.m.21 views

Design/Logic Flaw

An HTTP Host header injection vulnerability exists in YzmCMS V5.3. A malicious user can poison a web cache or trigger redirections...

5.8CVSS6.3AI score0.01221EPSS
Exploits1References2Affected Software1
0day.today
0day.today
added 2019/09/26 12:0 a.m.127 views

YzmCMS 5.3 - (Host) Header Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: YzmCMS 5.3 - 'Host' Header Injection Exploit Author: Debashis Pal Vendor Homepage: http://www.yzmcms.com/ Source: https://github.com/yzmcms/yzmcms Version: YzmCMS V5.3 CVE : N/A Tested on: Windows 7 SP164bit,XAMPP: 7.3.9 About...

Exploits0
Rows per page
Query Builder