Eyoucms: >> Eyoucms >> 1.4.1 Security Vulnerabilities
EyouCMS <= 1.6.0 was discovered a reflected-XSS in FileManager component in GET value "activepath" when creating a new file.
CVSS Score
6.1
EPSS Score
0.003
Published
2023-01-20
EyouCMS <= 1.6.0 was discovered a reflected-XSS in article type editor component in POST value "name" if the value contains a malformed UTF-8 char.
CVSS Score
6.1
EPSS Score
0.003
Published
2023-01-20
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char.
CVSS Score
6.1
EPSS Score
0.003
Published
2023-01-20
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file.
CVSS Score
5.4
EPSS Score
0.003
Published
2023-01-20
Cross Site Scripting (XSS) vulnerability exists in Eyoucms v1.4.7 and earlier via the addonfieldext parameter.
CVSS Score
6.1
EPSS Score
0.007
Published
2021-08-18
A stored cross site scripting (XSS) vulnerability in the web_copyright field of Eyoucms v1.4.1 allows authenticated attackers to execute arbitrary web scripts or HTML.
CVSS Score
5.4
EPSS Score
0.004
Published
2021-08-10
A stored cross site scripting (XSS) vulnerability in the web_attr_2 field of Eyoucms v1.4.1 allows authenticated attackers to execute arbitrary web scripts or HTML.
CVSS Score
5.4
EPSS Score
0.004
Published
2021-08-10
Page 2