Export limit exceeded: 363337 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (363337 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-18467 | 1 Bigtreecms | 1 Bigtree Cms | 2024-11-21 | 5.4 Medium |
| Cross Site Scripting (XSS) vulnerabilty exists in BigTree-CMS 4.4.3 in the tag name field found in the Tags page under the General menu via a crafted website name by doing an authenticated POST HTTP request to admin/tags/create. | ||||
| CVE-2020-18464 | 1 Aikcms | 1 Aikcms | 2024-11-21 | 3.5 Low |
| Cross Site Request Forgery (CSRF) vulnerability in AikCms 2.0.0 in video_list.php, which can let a malicious user delete movie information. | ||||
| CVE-2020-18463 | 1 Aikcms | 1 Aikcms | 2024-11-21 | 2.4 Low |
| Cross Site Request Forgery (CSRF) vulnerability exists in v2.0.0 in video_list.php, which can let a malicious user delete a video message. | ||||
| CVE-2020-18462 | 1 Aikcms | 1 Aikcms | 2024-11-21 | 7.2 High |
| File Upload vulnerabilty in AikCms v2.0.0 in poster_edit.php because the background file management office does not verify the uploaded file. | ||||
| CVE-2020-18460 | 1 711cms | 1 711cms | 2024-11-21 | 8.8 High |
| Cross Site Request Forgery (CSRF) vulnerability exists in 711cms v1.0.7 that can add an admin account via admin.php?c=Admin&m=content. | ||||
| CVE-2020-18458 | 1 Damicms | 1 Damicms | 2024-11-21 | 8.0 High |
| Cross Site Request Forgery (CSRF) vulnerability exists in DamiCMS v6.0.6 that can add an admin account via admin.php?s=/Admin/doadd. | ||||
| CVE-2020-18457 | 1 Bycms Project | 1 Bycms | 2024-11-21 | 6.8 Medium |
| Cross Site Request Forgery (CSRF) vulnerability exists in bycms v1.3.0 that can add an admin account via admin.php/ucenter/add.html. | ||||
| CVE-2020-18456 | 1 Pbootcms | 1 Pbootcms | 2024-11-21 | 4.8 Medium |
| Cross Site Scripting (XSS) vulnerability exists in PbootCMS v1.3.7 via the title parameter in the mod function in SingleController.php. | ||||
| CVE-2020-18455 | 1 Bycms Project | 1 Bycms | 2024-11-21 | 4.8 Medium |
| Cross Site Scripting (XSS) vulnerability exists in bycms v3.0.4 via the title parameter in the edit function in Document.php. | ||||
| CVE-2020-18454 | 1 Bycms Project | 1 Bycms | 2024-11-21 | 6.8 Medium |
| Cross Site Request Forgery (CSRF) vulnerability in bycms v1.3 via admin.php/systems/index/module_id/70/group_id/1.html. | ||||
| CVE-2020-18451 | 1 Damicms | 1 Damicms | 2024-11-21 | 4.8 Medium |
| Cross Site Scripting (XSS) vulnerability exists in DamiCMS v6.0.6 via the title parameter in the doadd function in LabelAction.class.php. | ||||
| CVE-2020-18449 | 1 Ukcms | 1 Ukcms | 2024-11-21 | 5.4 Medium |
| Cross Site Scripting (XSS) vulnerability exists in UKCMS v1.1.10 via data in the index function in Single.php | ||||
| CVE-2020-18446 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 4.8 Medium |
| Cross Site Scripting (XSS) vulnerability exists in YUNUCMS 1.1.9 via the param parameter in the insertContent function in ContentModel.php. | ||||
| CVE-2020-18445 | 1 Yunucms | 1 Yunucms | 2024-11-21 | 6.1 Medium |
| Cross Site Scripting (XSS) vulnerability exists in YUNUCMS 1.1.9 via the upurl function in Page.php. | ||||
| CVE-2020-18440 | 1 Phpok | 1 Phpok | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in framework/init.php in qinggan phpok 5.1, allows attackers to execute arbitrary code. | ||||
| CVE-2020-18439 | 1 Phpok | 1 Phpok | 2024-11-21 | 9.1 Critical |
| An issue was discoverered in in function edit_save_f in framework/admin/tpl_control.php in qinggan phpok 5.1, allows attackers to write arbitrary files or get a shell. | ||||
| CVE-2020-18438 | 1 Phpok | 1 Phpok | 2024-11-21 | 7.5 High |
| Directory traversal vulnerability in qinggan phpok 5.1, allows attackers to disclose sensitive information, via the title parameter to admin.php. | ||||
| CVE-2020-18430 | 1 Tinyexr Project | 1 Tinyexr | 2024-11-21 | 7.5 High |
| tinyexr 0.9.5 was discovered to contain an array index error in the tinyexr::DecodeEXRImage component, which can lead to a denial of service (DOS). | ||||
| CVE-2020-18428 | 1 Tinyexr Project | 1 Tinyexr | 2024-11-21 | 7.5 High |
| tinyexr commit 0.9.5 was discovered to contain an array index error in the tinyexr::SaveEXR component, which can lead to a denial of service (DOS). | ||||
| CVE-2020-18395 | 1 Gnu | 1 Gama | 2024-11-21 | 7.5 High |
| A NULL-pointer deference issue was discovered in GNU_gama::set() in ellipsoid.h in Gama 2.04 which can lead to a denial of service (DOS) via segment faults caused by crafted inputs. | ||||