Lucene search
CxuuCxuucms3.0
4 matches found
CVE-2020-29249
CXUUCMS V3 allows class="layui-input" XSS.
6.1CVSS6.3AI score0.0024EPSS
CVE-2020-29250
CXUUCMS V3 allows XSS via the first and third input fields to /public/admin.php.
6.1CVSS5.9AI score0.0024EPSS
CVE-2020-28091
cxuucms v3 has a SQL injection vulnerability, which can lead to the leakage of all database data via the keywords parameter via search.php.
7.5CVSS7.8AI score0.03584EPSS
CVE-2021-42970
Cross Site Scripting (XSS) vulnerability exists in cxuucms v3 via the imgurl of /feedback/post/ content parameter.
6.1CVSS6AI score0.00228EPSS