Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eyoucms eyoucms 1.6.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-45280
A cross-site scripting (XSS) vulnerability in the Url parameter in /login.php of EyouCMS v1.6.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Eyoucms Eyoucms 1.6.0
NA
CVE-2022-45755
Cross-site scripting (XSS) vulnerability in EyouCMS v1.6.0 allows malicious users to execute arbitrary code via the home page description on the basic information page.
Eyoucms Eyoucms 1.6.0
NA
CVE-2022-45537
EyouCMS <= 1.6.0 exists a reflected-XSS in the article publish component in cookie "ENV_LIST_URL".
Eyoucms Eyoucms
NA
CVE-2022-45538
EyouCMS <= 1.6.0 exists a reflected-XSS in the article publish component in cookie "ENV_GOBACK_URL".
Eyoucms Eyoucms
NA
CVE-2022-45539
EyouCMS <= 1.6.0 exists a reflected-XSS in FileManager component in GET value "activepath" when creating a new file.
Eyoucms Eyoucms
NA
CVE-2022-45542
EyouCMS <= 1.6.0 exists a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file.
Eyoucms Eyoucms
NA
CVE-2022-45540
EyouCMS <= 1.6.0 exists a reflected-XSS in article type editor component in POST value "name" if the value contains a malformed UTF-8 char.
Eyoucms Eyoucms
NA
CVE-2022-45541
EyouCMS <= 1.6.0 exists a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char.
Eyoucms Eyoucms
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started