Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eyoucms vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-1798
A vulnerability, which was classified as problematic, has been found in EyouCMS up to 1.5.4. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument typename leads to cross site scripting. The attack may be launched remotely. T...
Eyoucms Eyoucms
5.4
CVSSv3
CVE-2023-1799
A vulnerability, which was classified as problematic, was found in EyouCMS up to 1.5.4. This affects an unknown part of the file login.php. The manipulation of the argument tag_tag leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...
Eyoucms Eyoucms
6.1
CVSSv3
CVE-2023-2058
A vulnerability was found in EyouCms up to 1.6.2. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /yxcms/index.php?r=admin/extendfield/mesedit&tabid=12&id=4 of the component HTTP POST Request Handler. The manipul...
Eyoucms Eyoucms
6.1
CVSSv3
CVE-2020-28146
Cross Site Scripting (XSS) vulnerability exists in Eyoucms v1.4.7 and previous versions via the addonfieldext parameter.
Eyoucms Eyoucms
6.1
CVSSv3
CVE-2022-45538
EyouCMS <= 1.6.0 exists a reflected-XSS in the article publish component in cookie "ENV_GOBACK_URL".
Eyoucms Eyoucms
6.1
CVSSv3
CVE-2022-45539
EyouCMS <= 1.6.0 exists a reflected-XSS in FileManager component in GET value "activepath" when creating a new file.
Eyoucms Eyoucms
6.1
CVSSv3
CVE-2022-45540
EyouCMS <= 1.6.0 exists a reflected-XSS in article type editor component in POST value "name" if the value contains a malformed UTF-8 char.
Eyoucms Eyoucms
6.1
CVSSv3
CVE-2022-45541
EyouCMS <= 1.6.0 exists a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char.
Eyoucms Eyoucms
5.4
CVSSv3
CVE-2022-45542
EyouCMS <= 1.6.0 exists a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file.
Eyoucms Eyoucms
6.1
CVSSv3
CVE-2019-17430
EyouCms through 2019-07-11 has XSS related to the login.php web_recordnum parameter.
Eyoucms Eyoucms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »