Product:

Eyoucms

(Eyoucms)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 61
Date Id Summary Products Score Patch Annotated
2023-07-06 CVE-2023-37135 A stored cross-site scripting (XSS) vulnerability in the Image Upload module of eyoucms v1.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. Eyoucms 5.4
2023-07-06 CVE-2023-37136 A stored cross-site scripting (XSS) vulnerability in the Basic Website Information module of eyoucms v1.6.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. Eyoucms 5.4
2023-06-22 CVE-2023-36093 There is a storage type cross site scripting (XSS) vulnerability in the filing number of the Basic Information tab on the backend management page of EyouCMS v1.6.3 Eyoucms 5.4
2023-06-19 CVE-2023-34657 A stored cross-site scripting (XSS) vulnerability in Eyoucms v1.6.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the web_recordnum parameter. Eyoucms 4.8
2023-06-12 CVE-2023-33492 EyouCMS 1.6.2 is vulnerable to Cross Site Scripting (XSS). Eyoucms 5.4
2023-05-23 CVE-2023-31708 A Cross-Site Request Forgery (CSRF) in EyouCMS v1.6.2 allows attackers to execute arbitrary commands via a supplying a crafted HTML file to the Upload software format function. Eyoucms 4.3
2023-04-28 CVE-2023-30125 EyouCms V1.6.1-UTF8-sp1 is vulnerable to Cross Site Scripting (XSS). Eyoucms 6.1
2023-02-08 CVE-2022-45755 Cross-site scripting (XSS) vulnerability in EyouCMS v1.6.0 allows attackers to execute arbitrary code via the home page description on the basic information page. Eyoucms 5.4
2023-01-20 CVE-2022-45537 EyouCMS <= 1.6.0 was discovered a reflected-XSS in the article publish component in cookie "ENV_LIST_URL". Eyoucms 6.1
2023-01-20 CVE-2022-45538 EyouCMS <= 1.6.0 was discovered a reflected-XSS in the article publish component in cookie "ENV_GOBACK_URL". Eyoucms 6.1