Lucene search
K
Teacms ProjectTeacms

6 matches found

CVE
CVE
added 2023/04/04 12:0 a.m.62 views

CVE-2023-27091

CVE-2023-27091 affects XiaoBingby TeaCMS (version 2.3.3). The connected records describe an unauthorized access issue that allows attackers to escalate privileges via the id and keywords parameters. The vulnerability is evidenced across multiple sources (NVD, Red Hat, PRion, CNNVD, PT-SEC) with t...

7.2CVSS7AI score0.00702EPSS
CVE
CVE
added 2023/04/20 12:0 a.m.55 views

CVE-2023-27090

CVE-2023-27090 is a stored Cross-Site Scripting vulnerability in TeaCMS storage. The issue allows an attacker to exfiltrate sensitive data by manipulating the article title parameter. Documented impact in the sources is confidentiality leakage with a CVSSv3.1 base score of 5.4 (NETWORK, LOW explo...

5.4CVSS5.2AI score0.00427EPSS
CVE
CVE
added 2025/05/21 5:31 p.m.54 views

CVE-2025-5033

CVE-2025-5033 affects XiaoBingby TeaCMS 2.0.2. The vulnerability is in an unknown functionality of src/main/java/me/teacms/controller/admin/UserManageController/addUser, leading to cross-site request forgery (CSRF). It can be triggered remotely and an exploit has been disclosed publicly. Multiple...

5.3CVSS4.7AI score0.00231EPSS
CVE
CVE
added 2023/03/18 9:31 a.m.53 views

CVE-2023-1483

XiaoBingBy TeaCMS

9.8CVSS8.3AI score0.00621EPSS
Web
CVE
CVE
added 2023/03/14 2:43 p.m.51 views

CVE-2023-1398

CVE-2023-1398 affects XiaoBingBy TeaCMS 2.0. The vulnerability is a path traversal in the unknown functionality of the file egress point /admin/upload, exploitable remotely via traversal sequence '../filedir'. The vulnerability has been publicly disclosed (VDB-222985) and is referenced across mul...

8.8CVSS7.6AI score0.00965EPSS
Web
CVE
CVE
added 2023/03/24 7:31 a.m.50 views

CVE-2023-1616

CVE-2023-1616 affects XiaoBingBy TeaCMS up to version 2.0.2, specifically the Article Title Handler component. The issue is a cross-site scripting vulnerability triggered by manipulating input such as , with remote exploitability. The public exploit is noted, and multiple sources confirm the vuln...

5.4CVSS4.4AI score0.00475EPSS