Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wuzhicms wuzhicms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-32206
A stored cross-site scripting (XSS) vulnerability in the component \affiche\admin\index.php of WUZHICMS v4.1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the $formdata parameter.
NA
CVE-2024-31008
An issue exists in WUZHICMS version 4.1.0, allows an malicious user to execute arbitrary code and obtain sensitive information via the index.php file.
9.8
CVSSv3
CVE-2023-52064
Wuzhicms v4.1.0 exists to contain a SQL injection vulnerability via the $keywords parameter at /core/admin/copyfrom.php.
Wuzhicms Wuzhi Cms 4.1.0
9.8
CVSSv3
CVE-2023-46482
SQL injection vulnerability in wuzhicms v.4.1.0 allows a remote malicious user to execute arbitrary code via the Database Backup Functionality in the coreframe/app/database/admin/index.php component.
Wuzhicms Wuzhicms 4.1.0
8.8
CVSSv3
CVE-2020-36037
An issue was disocvered in wuzhicms version 4.1.0, allows remote malicious users to execte arbitrary code via the setting parameter to the ueditor in index.php.
Wuzhicms Wuzhicms 4.1.0
8.8
CVSSv3
CVE-2020-21325
An issue in WUZHI CMS v.4.1.0 allows a remote malicious user to execute arbitrary code via the set_chache method of the function\common.func.php file.
Wuzhicms Wuzhicms 4.1.0
9.8
CVSSv3
CVE-2020-20413
SQL injection vulnerability found in WUZHICMS v.4.1.0 allows a remote malicious user to execute arbitrary code via the checktitle() function in admin/content.php.
Wuzhicms Wuzhicms 4.1.0
5.4
CVSSv3
CVE-2023-31860
Wuzhi CMS v3.1.2 has a storage type XSS vulnerability in the backend of the Five Finger CMS b2b system.
Wuzhicms Wuzhi Cms 3.1.2
5.4
CVSSv3
CVE-2023-30123
wuzhicms v4.1.0 is vulnerable to Cross Site Scripting (XSS) in the Member Center, Account Settings.
Wuzhicms Wuzhicms 4.1.0
2.7
CVSSv3
CVE-2022-36168
A directory traversal vulnerability exists in Wuzhicms 4.1.0. via /coreframe/app/attachment/admin/index.php:
Wuzhicms Wuzhicms 4.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »