Wuzhicms: >> Wuzhicms >> 3.1.2 Security Vulnerabilities
Wuzhi CMS v3.1.2 has a storage type XSS vulnerability in the backend of the Five Finger CMS b2b system.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-05-23
Blacklist bypass issue exists in WUZHI CMS up to and including 4.1.0 in common.func.php, which when uploaded can cause remote code executiong.
CVSS Score
8.8
EPSS Score
0.009
Published
2021-09-21
Cross Site Scripting (XSS) vlnerability exists in WUZHI CMS up to and including 4.1.0 in the config function in coreframe/app/attachment/libs/class/ckditor.class.php.
CVSS Score
5.4
EPSS Score
0.002
Published
2021-09-21