Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wuzhicms wuzhicms 4.1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-31008
An issue exists in WUZHICMS version 4.1.0, allows an malicious user to execute arbitrary code and obtain sensitive information via the index.php file.
NA
CVE-2023-52064
Wuzhicms v4.1.0 exists to contain a SQL injection vulnerability via the $keywords parameter at /core/admin/copyfrom.php.
Wuzhicms Wuzhi Cms 4.1.0
NA
CVE-2023-46482
SQL injection vulnerability in wuzhicms v.4.1.0 allows a remote malicious user to execute arbitrary code via the Database Backup Functionality in the coreframe/app/database/admin/index.php component.
Wuzhicms Wuzhicms 4.1.0
NA
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote malicious users to execte arbitrary code via the setting parameter to the ueditor in index.php.
Wuzhicms Wuzhicms 4.1.0
NA
CVE-2020-21325
An issue in WUZHI CMS v.4.1.0 allows a remote malicious user to execute arbitrary code via the set_chache method of the function\common.func.php file.
Wuzhicms Wuzhicms 4.1.0
NA
CVE-2020-20413
SQL injection vulnerability found in WUZHICMS v.4.1.0 allows a remote malicious user to execute arbitrary code via the checktitle() function in admin/content.php.
Wuzhicms Wuzhicms 4.1.0
NA
CVE-2023-30123
wuzhicms v4.1.0 is vulnerable to Cross Site Scripting (XSS) in the Member Center, Account Settings.
Wuzhicms Wuzhicms 4.1.0
NA
CVE-2022-36168
A directory traversal vulnerability exists in Wuzhicms 4.1.0. via /coreframe/app/attachment/admin/index.php:
Wuzhicms Wuzhicms 4.1.0
4.3
CVSSv2
CVE-2020-19897
A reflected Cross Site Scripting (XSS) in wuzhicms v4.1.0 allows remote malicious users to execute arbitrary web script or HTML via the imgurl parameter.
Wuzhicms Wuzhi Cms 4.1.0
7.5
CVSSv2
CVE-2021-41654
SQL injection vulnerabilities exist in Wuzhicms v4.1.0 which allows malicious users to execute arbitrary SQL commands via the $keyValue parameter in /coreframe/app/pay/admin/index.php
Wuzhicms Wuzhicms 4.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »