Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eyoucms vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-28146
Cross Site Scripting (XSS) vulnerability exists in Eyoucms v1.4.7 and previous versions via the addonfieldext parameter.
Eyoucms Eyoucms
NA
CVE-2023-2058
A vulnerability was found in EyouCms up to 1.6.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /yxcms/index.php?r=admin/extendfield/mesedit&tabid=12&id=4 of the component HTTP POST Request Handler. The manipul...
Eyoucms Eyoucms
4.3
CVSSv2
CVE-2019-17430
EyouCms through 2019-07-11 has XSS related to the login.php web_recordnum parameter.
Eyoucms Eyoucms
NA
CVE-2022-45538
EyouCMS <= 1.6.0 exists a reflected-XSS in the article publish component in cookie "ENV_GOBACK_URL".
Eyoucms Eyoucms
NA
CVE-2023-1798
A vulnerability, which was classified as problematic, has been found in EyouCMS up to 1.5.4. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument typename leads to cross site scripting. The attack may be launched remotely. T...
Eyoucms Eyoucms
NA
CVE-2023-1799
A vulnerability, which was classified as problematic, was found in EyouCMS up to 1.5.4. This affects an unknown part of the file login.php. The manipulation of the argument tag_tag leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...
Eyoucms Eyoucms
NA
CVE-2022-45537
EyouCMS <= 1.6.0 exists a reflected-XSS in the article publish component in cookie "ENV_LIST_URL".
Eyoucms Eyoucms
NA
CVE-2022-45539
EyouCMS <= 1.6.0 exists a reflected-XSS in FileManager component in GET value "activepath" when creating a new file.
Eyoucms Eyoucms
NA
CVE-2022-45540
EyouCMS <= 1.6.0 exists a reflected-XSS in article type editor component in POST value "name" if the value contains a malformed UTF-8 char.
Eyoucms Eyoucms
NA
CVE-2022-45541
EyouCMS <= 1.6.0 exists a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char.
Eyoucms Eyoucms
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »