Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wuzhi cms vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-52064
Wuzhicms v4.1.0 exists to contain a SQL injection vulnerability via the $keywords parameter at /core/admin/copyfrom.php.
Wuzhicms Wuzhi Cms 4.1.0
8.8
CVSSv3
CVE-2020-21325
An issue in WUZHI CMS v.4.1.0 allows a remote malicious user to execute arbitrary code via the set_chache method of the function\common.func.php file.
Wuzhicms Wuzhicms 4.1.0
5.4
CVSSv3
CVE-2023-31860
Wuzhi CMS v3.1.2 has a storage type XSS vulnerability in the backend of the Five Finger CMS b2b system.
Wuzhicms Wuzhi Cms 3.1.2
6.1
CVSSv3
CVE-2020-19897
A reflected Cross Site Scripting (XSS) in wuzhicms v4.1.0 allows remote malicious users to execute arbitrary web script or HTML via the imgurl parameter.
Wuzhicms Wuzhi Cms 4.1.0
9.8
CVSSv3
CVE-2022-27431
Wuzhicms v4.1.0 exists to contain a SQL injection vulnerability via the groupid parameter at /coreframe/app/member/admin/group.php.
Wuzhicms Wuzhi Cms 4.1.0
5.4
CVSSv3
CVE-2020-19770
A cross-site scripting (XSS) vulnerability in the system bulletin component of WUZHI CMS v4.1.0 allows malicious users to steal the admin's cookie.
Wuzhicms Wuzhi Cms 4.1.0
9.8
CVSSv3
CVE-2020-20122
Wuzhi CMS v4.1 contains a SQL injection vulnerability in the checktitle() function in /coreframe/app/content/admin/content.php.
Wuzhicms Wuzhi Cms 4.1.0
8.8
CVSSv3
CVE-2020-20124
Wuzhi CMS v4.1.0 contains a remote code execution (RCE) vulnerability in \attachment\admin\index.php.
Wuzhicms Wuzhi Cms 4.1.0
8.1
CVSSv3
CVE-2020-24930
Beijing Wuzhi Internet Technology Co., Ltd. Wuzhi CMS 4.0.1 is an open source content management system. The five fingers CMS backend in***.php file has arbitrary file deletion vulnerability. Attackers can use vulnerabilities to delete arbitrary files.
Wuzhicms Wuzhicms 4.1.0
8.8
CVSSv3
CVE-2020-19551
Blacklist bypass issue exists in WUZHI CMS up to and including 4.1.0 in common.func.php, which when uploaded can cause remote code executiong.
Wuzhicms Wuzhicms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »