Eyoucms: >> Eyoucms >> 1.5.6 Security Vulnerabilities
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the article attribute editor component in POST value "value" if the value contains a non-integer char.
CVSS Score
6.1
EPSS Score
0.002
Published
2023-01-20
EyouCMS <= 1.6.0 was discovered a reflected-XSS in the FileManager component in GET parameter "filename" when editing any file.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-01-20
A stored cross-site scripting (XSS) vulnerability in eyoucms v1.5.6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL field under the login page.
CVSS Score
4.8
EPSS Score
0.002
Published
2022-06-24
Page 2