Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eyoucms eyoucms vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2024-22927
Cross Site Scripting (XSS) vulnerability in the func parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
6.1
CVSSv3
CVE-2024-23031
Cross Site Scripting (XSS) vulnerability in is_water parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
6.1
CVSSv3
CVE-2024-23032
Cross Site Scripting vulnerability in num parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
6.1
CVSSv3
CVE-2024-23033
Cross Site Scripting vulnerability in the path parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
6.1
CVSSv3
CVE-2024-23034
Cross Site Scripting vulnerability in the input parameter in eyoucms v.1.6.5 allows a remote malicious user to run arbitrary code via crafted URL.
Eyoucms Eyoucms 1.6.5
8.8
CVSSv3
CVE-2022-44387
EyouCMS V1.5.9-UTF8-SP1 exists to contain a Cross-Site Request Forgery (CSRF) via the Basic Information component under the Edit Member module.
Eyoucms Eyoucms 1.5.9
6.5
CVSSv3
CVE-2022-44389
EyouCMS V1.5.9-UTF8-SP1 exists to contain a Cross-Site Request Forgery (CSRF) via the Edit Admin Profile module. This vulnerability allows malicious users to arbitrarily change Administrator account information.
Eyoucms Eyoucms 1.5.9
5.4
CVSSv3
CVE-2022-44390
A cross-site scripting (XSS) vulnerability in EyouCMS V1.5.9-UTF8-SP1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Public Security Record Number text field.
Eyoucms Eyoucms 1.5.9
5.3
CVSSv3
CVE-2023-37645
eyoucms v1.6.3 exists to contain an information disclosure vulnerability via the component /custom_model_path/recruit.filelist.txt.
Eyoucms Eyoucms 1.6.3
5.4
CVSSv3
CVE-2022-45755
Cross-site scripting (XSS) vulnerability in EyouCMS v1.6.0 allows malicious users to execute arbitrary code via the home page description on the basic information page.
Eyoucms Eyoucms 1.6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »