Discuzx@3.4 Security Vulnerabilities and Issues — Discuzx@3.4 CVE List

Lucene search

DiscuzDiscuzx3.4

3 matches found

CVE•added 2024/04/11 5:15 a.m.•58 views

CVE-2024-30884

Reflected Cross-Site Scripting (XSS) vulnerability in Discuz! version X3.4 20220811, allows remote attackers to execute arbitrary code and obtain sensitive information via crafted payload to the primarybegin parameter in the misc.php component.

7.1CVSS6.3AI score0.00274EPSS

CVE•added 2023/02/15 9:15 p.m.•38 views

CVE-2022-45543

Cross site scripting (XSS) vulnerability in DiscuzX 3.4 allows attackers to execute arbitrary code via the datetline, title, tpp, or username parameters via the audit search.

6.1CVSS6.2AI score0.00171EPSS

CVE•added 2018/01/12 9:29 a.m.•34 views

CVE-2018-5376

Discuz! DiscuzX X3.4 has XSS via the include\spacecp\spacecp_upload.php op parameter.

6.1CVSS6AI score0.00286EPSS