Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eyoucms eyoucms vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-31708
A Cross-Site Request Forgery (CSRF) in EyouCMS v1.6.2 allows malicious users to execute arbitrary commands via a supplying a crafted HTML file to the Upload software format function.
Eyoucms Eyoucms 1.6.2
8.8
CVSSv3
CVE-2022-44387
EyouCMS V1.5.9-UTF8-SP1 exists to contain a Cross-Site Request Forgery (CSRF) via the Basic Information component under the Edit Member module.
Eyoucms Eyoucms 1.5.9
6.5
CVSSv3
CVE-2022-44389
EyouCMS V1.5.9-UTF8-SP1 exists to contain a Cross-Site Request Forgery (CSRF) via the Edit Admin Profile module. This vulnerability allows malicious users to arbitrarily change Administrator account information.
Eyoucms Eyoucms 1.5.9
5.4
CVSSv3
CVE-2022-44390
A cross-site scripting (XSS) vulnerability in EyouCMS V1.5.9-UTF8-SP1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Public Security Record Number text field.
Eyoucms Eyoucms 1.5.9
5.4
CVSSv3
CVE-2022-45755
Cross-site scripting (XSS) vulnerability in EyouCMS v1.6.0 allows malicious users to execute arbitrary code via the home page description on the basic information page.
Eyoucms Eyoucms 1.6.0
4.8
CVSSv3
CVE-2023-48880
A stored cross-site scripting (XSS) vulnerability in EyouCMS v1.6.4-UTF8-SP1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Menu Name field at /login.php?m=admin&c=Index&a=changeTableVal&_ajax=1&lang=cn.
Eyoucms Eyoucms 1.6.4
4.8
CVSSv3
CVE-2023-48881
A stored cross-site scripting (XSS) vulnerability in EyouCMS v1.6.4-UTF8-SP1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Field Title field at /login.php?m=admin&c=Field&a=arctype_add&_ajax=1&lang=cn.
Eyoucms Eyoucms 1.6.4
4.8
CVSSv3
CVE-2023-48882
A stored cross-site scripting (XSS) vulnerability in EyouCMS v1.6.4-UTF8-SP1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Document Properties field at /login.php m=admin&c=Index&a=changeTableVal&_ajax=1&la...
Eyoucms Eyoucms 1.6.4
8.1
CVSSv3
CVE-2021-46255
eyouCMS V1.5.5-UTF8-SP3_1 suffers from Arbitrary file deletion due to insufficient filtering of the parameter filename.
Eyoucms Eyoucms 1.5.5-utf8-sp3 1
5.4
CVSSv3
CVE-2023-50566
A stored cross-site scripting (XSS) vulnerability in EyouCMS-V1.6.5-UTF8-SP1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Public Security Registration Number parameter.
Eyoucms Eyoucms 1.6.5-utf8-sp1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »