Published: 25/02/2019 Updated: 25/02/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

XSS exists in WUZHI CMS 4.1.0 via index.php?m=message&f=message&v=add&username=[XSS] to coreframe/app/message/message.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wuzhicms wuzhi cms 4.1.0

Buffer overflow flaw in British Airways in-flight entertainment systems will affect other airlines, but why try it in the air?

The Register • Gareth Corfield • 08 Mar 2019

Researcher's stumbling on bug was risky to say the least

A cybersecurity professor has insisted he was not hunting for a vulnerability when he found a denial-of-service bug on an in-flight entertainment screen during a long-haul flight. His findings could affect a number of airliners running Thales-made equipment. But Hector Marco, an associate cybersecurity professor at the University of the West of Scotland, has received a kicking on social media from some in the security industry over his research method. At the start of a commercial transatlantic ...

CVE-2019-9109

Vulnerability Summary

Vulnerability Trend

Recent Articles

References

Vulmon Search

About

Products

Connect