Xunruicms: >> Xunruicms >> 4.3.11 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in XunRuiCMS versions v4.6.2 and before, allows remote attackers to obtain sensitive information via crafted malicious requests to the background login.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-02-02
xunruicms up to v4.5.1 was discovered to contain a remote code execution (RCE) vulnerability in /index.php. This vulnerability allows attackers to execute arbitrary code via a crafted GET request.
CVSS Score
9.8
EPSS Score
0.042
Published
2023-09-27
XunRuiCMS v4.3.3 to v4.5.1 vulnerable to PHP file write and CMS PHP file inclusion, allows attackers to execute arbitrary php code, via the add function in cron.php.
CVSS Score
7.2
EPSS Score
0.001
Published
2023-03-23
Page 2