Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eyoucms eyoucms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-34657
A stored cross-site scripting (XSS) vulnerability in Eyoucms v1.6.2 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the web_recordnum parameter.
Eyoucms Eyoucms 1.6.2
NA
CVE-2024-22927
Cross Site Scripting (XSS) vulnerability in the func parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
NA
CVE-2024-23031
Cross Site Scripting (XSS) vulnerability in is_water parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
NA
CVE-2024-23032
Cross Site Scripting vulnerability in num parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
NA
CVE-2024-23034
Cross Site Scripting vulnerability in the input parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
445
VMScore
CVE-2021-39500
Eyoucms 1.5.4 is vulnerable to Directory Traversal. Due to a lack of input data sanitizaton in param tpldir, filename, type, nid an attacker can inject "../" to escape and write file to writeable directories.
Eyoucms Eyoucms 1.5.4
NA
CVE-2023-37132
A stored cross-site scripting (XSS) vulnerability in the custom variables module of eyoucms v1.6.3 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Eyoucms Eyoucms 1.6.3
NA
CVE-2023-37133
A stored cross-site scripting (XSS) vulnerability in the Column management module of eyoucms v1.6.3 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Eyoucms Eyoucms 1.6.3
NA
CVE-2023-37134
A stored cross-site scripting (XSS) vulnerability in the Basic Information module of eyoucms v1.6.3 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Eyoucms Eyoucms 1.6.3
NA
CVE-2023-37135
A stored cross-site scripting (XSS) vulnerability in the Image Upload module of eyoucms v1.6.3 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Eyoucms Eyoucms 1.6.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36920
buffer overflow
CVE-2024-36913
CVE-2024-5497
CVE-2024-23917
CVE-2024-4956
server-side request forgery
CVE-2024-35468
SSTI
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »