Wangl1989: Security Vulnerabilities
A vulnerability was found in wangl1989 mysiteforme 1.0 and classified as critical. Affected by this issue is the function rememberMeManager of the file src/main/java/com/mysiteforme/admin/config/ShiroConfig.java. The manipulation leads to deserialization. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.3
EPSS Score
0.001
Published
2025-01-05
mysiteforme v2.2.1 was discovered to contain a Server-Side Request Forgery.
CVSS Score
7.5
EPSS Score
0.002
Published
2022-05-24
mysiteforme, as of 19-12-2022, is vulnerable to Cross Site Scripting (XSS) via the add blog tag function in the blog tag in the background blog management.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-01-20
mysiteforme, as of 19-12-2022, has a CSRF vulnerability in the background blog management. The attacker constructs a CSRF load. Once the administrator clicks a malicious link, a blog tag will be added
CVSS Score
6.5
EPSS Score
0.001
Published
2022-01-19
Page 2