CVE-2023-1683
- EPSS 0.04%
- Veröffentlicht 29.03.2023 01:15:10
- Zuletzt bearbeitet 21.11.2024 07:39:41
A vulnerability was found in Xunrui CMS 4.61 and classified as problematic. Affected by this issue is some unknown functionality of the file /dayrui/Fcms/View/system_log.html. The manipulation leads to information disclosure. The attack may be launch...
CVE-2023-1682
- EPSS 0.09%
- Veröffentlicht 29.03.2023 00:15:08
- Zuletzt bearbeitet 21.11.2024 07:39:41
A vulnerability has been found in Xunrui CMS 4.61 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /dayrui/My/Config/Install.txt. The manipulation leads to direct request. The attack can be launche...
CVE-2023-1681
- EPSS 0.1%
- Veröffentlicht 28.03.2023 23:15:09
- Zuletzt bearbeitet 21.11.2024 07:39:40
A vulnerability, which was classified as problematic, was found in Xunrui CMS 4.61. Affected is an unknown function of the file /config/myfield/test.php. The manipulation leads to information disclosure. It is possible to launch the attack remotely. ...
CVE-2022-30037
- EPSS 0.09%
- Veröffentlicht 23.03.2023 02:15:12
- Zuletzt bearbeitet 21.11.2024 07:02:06
XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion, allows attackers to execute arbitrary php code, via the add function in cron.php.
CVE-2022-36224
- EPSS 0.18%
- Veröffentlicht 19.08.2022 17:15:07
- Zuletzt bearbeitet 21.11.2024 07:12:37
XunRuiCMS V4.5.6 is vulnerable to Cross Site Request Forgery (CSRF).
CVE-2019-17074
- EPSS 0.19%
- Veröffentlicht 01.10.2019 20:15:11
- Zuletzt bearbeitet 21.11.2024 04:31:39
An issue was discovered in XunRuiCMS 4.3.1. There is a stored XSS in the module_category area.