12 matches found
EUVD-2020-11847
Malware in sbrugna...
CVE-2020-19951
A cross-site request forgery CSRF in /controller/pay.class.php of YzmCMS v5.5 allows attackers to access sensitive components of the application...
Cross site request forgery (csrf)
A cross-site request forgery CSRF in /controller/pay.class.php of YzmCMS v5.5 allows attackers to access sensitive components of the application...
CVE-2020-19951
A cross-site request forgery CSRF in /controller/pay.class.php of YzmCMS v5.5 allows attackers to access sensitive components of the application...
CVE-2020-19951
The CVE-2020-19951 entry concerns a CSRF vulnerability in YzmCMS v5.5, specifically in /controller/pay.class.php. The issue enables an attacker to access sensitive components of the application due to cross-site request forgery. Connected sources consistently reference the same vulnerability in Y...
CVE-2020-20341
YzmCMS v5.5 contains a server-side request forgery SSRF in the grabimage function...
Server side request forgery (ssrf)
YzmCMS v5.5 contains a server-side request forgery SSRF in the grabimage function...
CVE-2020-20341
CVE-2020-20341 affects YzmCMS v5.5 with a server-side request forgery (SSRF) in the grab_image() function. The issue is documented across multiple sources (NVD, Red Hat, CNVD, etc.), describing an SSRF vulnerability in that specific function. The provided references do not include a patched versi...
CVE-2020-20341
YzmCMS v5.5 contains a server-side request forgery SSRF in the grabimage function...
CVE-2020-22394
In YzmCMS v5.5 the member contribution function in the editor contains a cross-site scripting XSS vulnerability...
Cross site scripting
In YzmCMS v5.5 the member contribution function in the editor contains a cross-site scripting XSS vulnerability...
CVE-2020-22394
In YzmCMS v5.5 the member contribution function in the editor contains a cross-site scripting XSS vulnerability...