Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
Duxcms ProjectDuxcms

4 matches found

CVE
CVEadded 2023/07/31 2:15 p.m.39 views

CVE-2020-21881

Cross Site Request Forgery (CSRF) vulnerability in admin.php in DuxCMS 2.1 allows remote attackers to modtify application data via article/admin/content/add.

6.5CVSS6.6AI score0.00046EPSS
CVE
CVEadded 2023/07/31 4:15 p.m.35 views

CVE-2020-36763

Cross Site Scripting (XSS) vulnerability in DuxCMS 2.1 allows remote attackers to run arbitrary code via the content, time, copyfrom parameters when adding or editing a post.

5.4CVSS5.4AI score0.00046EPSS
CVE
CVEadded 2023/07/06 2:15 p.m.22 views

CVE-2020-21861

File upload vulnerability in DuxCMS 2.1 allows attackers to execute arbitrary php code via duxcms/AdminUpload/upload.

8.8CVSS8.9AI score0.00077EPSS
CVE
CVEadded 2023/07/06 2:15 p.m.21 views

CVE-2020-21862

Directory traversal vulnerability in DuxCMS 2.1 allows attackers to delete arbitrary files via /admin/AdminBackup/del.

8.1CVSS8AI score0.00184EPSS