CVE-2020-22765 (nukeviet)
Cross Site Scripting (XSS) vulnerability in NukeViet cms 4.4.0 via the editor in the News module. Devamını Oku
Devamını oku
CVE-2020-15948 (chat)
eGain Chat 15.5.5 allows XSS via the Name (aka full_name) field. Devamını Oku
CVE-2020-18157 (metinfo)
Cross Site Request Forgery (CSRF) vulnerability in MetInfo 6.1.3 via a doaddsave action in admin/index.php. Devamını Oku
CVE-2020-18158 (hucart)
Cross Site Scripting (XSS) vulnerability in HuCart 5.7.4 via nickname in index.php. Devamını Oku
CVE-2020-18175 (metinfo)
SQL Injection vulnerability in Metinfo 6.1.3 via a dosafety_emailadd action in basic.php. Devamını Oku
CVE-2020-19118 (yzmcms)
Cross Site Scripting (XSS) vulnerabiity in YzmCMS 5.2 via the site_code parameter in admin/index/init.html. Devamını Oku
CVE-2020-20699 (s-cms)
A cross site scripting (XSS) vulnerability in S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Copyright text box under Basic Settings. Devamını Oku
CVE-2020-20700 (s-cms)
A stored cross site scripting (XSS) vulnerability in /app/form_add/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the Title Entry text box. Devamını Oku
CVE-2020-20701 (s-cms)
A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. Devamını Oku
CVE-2020-21806 (ectouch)
SQL Injection Vulnerability in ECTouch v2 via the shop page in index.php.. Devamını Oku
CVE-2020-21808 (nukeviet)
SQL Injection vulnerability in NukeViet CMS 4.0.10 – 4.3.07 via:the topicsid parameter in modules/news/admin/addtotopics.php. Devamını Oku
CVE-2020-21809 (nukeviet)
SQL Injection vulnerability in NukeViet CMS module Shops 4.0.29 and 4.3 via the (1) listid parameter in detail.php and the (2) group_price or groupid parameters in search_result.php. Devamını Oku