Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ujcms ujcms vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-24369
A cross-site scripting (XSS) vulnerability in UJCMS v4.1.3 allows malicious users to execute arbitrary web scripts or HTML via injecting a crafted payload into the URL parameter under the Add New Articles function.
Ujcms Ujcms
6.5
CVSSv3
CVE-2023-3231
A vulnerability has been found in UJCMS up to 6.0.2 and classified as problematic. This vulnerability affects unknown code of the component ZIP Package Handler. The manipulation of the argument dir leads to information disclosure. The attack can be initiated remotely. The complex...
Ujcms Ujcms
9.8
CVSSv3
CVE-2023-51350
A spoofing attack in ujcms v.8.0.2 allows a remote malicious user to obtain sensitive information and execute arbitrary code via a crafted script to the X-Forwarded-For function in the header.
Ujcms Ujcms 8.0.2
9.8
CVSSv3
CVE-2023-34747
File upload vulnerability in ujcms 6.0.2 via /api/backend/core/web-file-upload/upload.
Ujcms Ujcms 6.0.2
1 Github repository
9.8
CVSSv3
CVE-2023-34865
Directory traversal vulnerability in ujcms 6.0.2 allows malicious users to move files via the rename feature.
Ujcms Ujcms 6.0.2
7.5
CVSSv3
CVE-2023-34878
An issue exists in Ujcms v6.0.2 allows malicious users to gain sensitive information via the dir parameter to /api/backend/core/web-file-html/download-zip.
Ujcms Ujcms 6.0.2
5.4
CVSSv3
CVE-2023-51806
File Upload vulnerability in Ujcms v.8.0.2 allows a local malicious user to execute arbitrary code via a crafted file.
Ujcms Ujcms 8.0.2
5.4
CVSSv3
CVE-2024-0599
A vulnerability was found in Jspxcms 10.2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file src\main\java\com\jspxcms\core\web\back\InfoController.java of the component Document Management Page. The manipulation of the ...
Ujcms Jspxcms 10.2.0
4.3
CVSSv3
CVE-2024-1256
A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. This issue affects some unknown processing of the file /ext/collect/filter_text.do. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to t...
Ujcms Jspxcms 10.2.0
6.1
CVSSv3
CVE-2024-1257
A vulnerability was found in Jspxcms 10.2.0. It has been classified as problematic. Affected is an unknown function of the file /ext/collect/find_text.do. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed ...
Ujcms Jspxcms 10.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »